Crisis Management (BCM)
In times of crisis, the quality of crisis management determines operational capability and long-term success. We support you in developing and implementing a comprehensive crisis management system that optimally prepares your company for potential crises and enables structured, effective management.
- ✓Establishment of effective crisis management structures and teams
- ✓Development of clear decision processes and escalation paths for crisis situations
- ✓Implementation of effective crisis communication for all relevant stakeholders
- ✓Regular training and exercises for optimal crisis readiness
Your strategic success starts here
Our clients trust our expertise in digital transformation, compliance, and risk management
30 Minutes • Non-binding • Immediately available
For optimal preparation of your strategy session:
- Your strategic goals and objectives
- Desired business outcomes and ROI
- Steps already taken
Or contact us directly:
Certifications, Partners and more...
Crisis Management
Our Strengths
- Comprehensive expertise from numerous crisis management projects across various industries
- Proven methodologies and tools for effective crisis management
- Comprehensive approach considering organizational, technical, and communication aspects
- Experienced consultants with background in crisis teams and emergency management
Expert Tip
A key success factor in crisis management is preparation for the unexpected. Crisis management structures should be flexible enough to respond to various scenarios rather than focusing on managing specific, predictable events. Particularly important is regular practice of crisis management processes under realistic conditions – only this way can weaknesses be identified and addressed before an actual emergency occurs.
ADVISORI in Numbers
11+
Years of Experience
120+
Employees
520+
Projects
Our approach to developing and implementing crisis management systems follows a structured yet flexible methodology that we adapt to your specific requirements and business circumstances.
Our Approach:
Assessment of existing crisis management capabilities and structures
Development of a customized crisis management framework and governance model
Building and training of crisis teams and responsible persons
Creation of crisis management documentation and tools
Validation through exercises and continuous improvement of the crisis management system
"The effectiveness of a crisis management system only becomes apparent in an actual emergency – which makes it all the more important to continuously test and improve crisis readiness through regular exercises and realistic simulations. Successful organizations are not characterized by not experiencing crises, but by their ability to manage them quickly and effectively and emerge stronger from them."
Sarah Richter
Head of Information Security, Cyber Security
Expertise & Experience:
10+ years of experience, CISA, CISM, Lead Auditor, DORA, NIS2, BCM, Cyber and Information Security
Our Services
We offer you tailored solutions for your digital transformation
Crisis Management Governance
Development and implementation of crisis management governance structures and processes for effective crisis prevention and management.
- Development of crisis management policies and principles
- Establishment of crisis management responsibilities and roles
- Implementation of decision and escalation processes
- Integration of crisis management into the overarching BCM framework
Crisis Staff & Crisis Teams
Building and training of effective crisis staffs and crisis teams with clear structures, roles, and responsibilities.
- Design of crisis staff and crisis team structures
- Definition of roles, responsibilities, and competencies
- Development of collaboration and coordination structures
- Implementation of crisis team activation and mobilization processes
Crisis Management Plans
Development and implementation of crisis management plans, playbooks, and checklists for various crisis scenarios.
- Development of crisis management plans and processes
- Creation of crisis management playbooks and guides
- Implementation of checklists and decision aids
- Development of scenario-specific action instructions
Crisis Communication
Development and implementation of effective crisis communication strategies and processes for internal and external stakeholders.
- Development of crisis communication strategies and principles
- Creation of crisis communication plans and templates
- Establishment of communication channels and processes
- Training of communication managers and spokespersons
Crisis Management Exercises
Planning and conducting crisis management exercises, simulations, and workshops to validate and improve crisis readiness.
- Development of crisis exercise scenarios and concepts
- Conducting tabletop exercises and planning games
- Organization of realistic simulations and live exercises
- Systematic evaluation and improvement management
Crisis Management Training
Conducting training and workshops on crisis management topics for executives, crisis teams, and employees.
- Development of training concepts and materials
- Conducting crisis management basic training
- Organization of workshops for crisis teams and executives
- Conducting crisis communication training
Our Competencies in BCM Framework & Governance
Choose the area that fits your requirements
A systematic Business Impact Analysis (BIA) is the foundation of every effective Business Continuity strategy. Using our structured, industry-proven methodology, we identify and assess your critical business processes and functions, their dependencies, and resource requirements — providing a solid basis for targeted and economically sound continuity measures.
The ability to respond quickly, in a coordinated manner, and effectively in emergency situations is critical for limiting damage and maintaining critical business functions. Our Emergency Response approach supports organizations in developing solid emergency response capabilities based on best practices and proven methods.
Transitioning Business Continuity Management from a project phase into steady-state operations is the critical step towards lasting organizational resilience. We support you in structurally embedding BCM processes into your line organization � with defined roles, training programmes, regular exercises and measurable KPIs aligned to ISO 22301 and BSI 200-4.
Develop tailored recovery strategies that provide maximum resilience for your critical business processes. Our experts support you in selecting and implementing the right recovery options that enable optimal recovery times at reasonable costs.
Frequently Asked Questions about Crisis Management (BCM)
What is crisis management and why do organizations need it?
Crisis management encompasses all measures for preparing, responding to, and recovering from organizational crises. According to ISO 22361, it focuses on strategic leadership and decision-making under extreme pressure. Organizations need crisis management because unforeseen events such as cyberattacks, supply chain disruptions, or reputational crises can become existential threats without structured processes. A systematic crisis management framework reduces response times, minimizes damage, and ensures organizational capacity to act.
How do you build an effective crisis management team?
An effective crisis team consists of an experienced crisis leader plus representatives from communications, IT, legal, HR, and operations. Per BSI Standard 200–4 and ISO 22361, the crisis team must have clear decision-making authority, defined escalation levels, and deputy arrangements. Regular crisis exercises, a reliable alerting chain, and a dedicated crisis room with redundant communication infrastructure are essential for operational readiness.
What should a crisis management plan include?
A crisis management plan includes activation criteria for various crisis scenarios, the crisis team organization with roles and authorities, escalation procedures, communication templates for internal and external stakeholders, and scenario-specific action guidelines. Contact lists, resource overviews, and checklists complement the plan. It must be regularly validated through exercises and updated to reflect current threats and organizational changes.
What are the key principles of crisis communication?
Crisis communication requires speed, transparency, and consistency. The initial response shapes public perception of the entire crisis management effort. Prepare key messages, talking points, and pre-approved initial statements. Internally, all employees must be informed promptly. Externally, you need a trained spokesperson and coordinated channels for media, customers, and authorities. Social media monitoring is indispensable for real-time situational awareness.
How does ISO 22361 differ from BSI Standard 200-4 for crisis management?
ISO
22361 focuses on strategic crisis leadership, decision-making, and crisis communication. BSI Standard 200–4 is broader, covering the entire Business Continuity Management lifecycle including emergency management and crisis management. ISO
22361 complements BSI 200–4 as a specialized guide for crisis team operations. Organizations should combine both standards to cover strategic and operational levels comprehensively.
How do you integrate crisis management into Business Continuity Management?
Integration is achieved through shared governance structures, harmonized escalation paths, and aligned plans. The Business Impact Analysis forms the common foundation. Clear handover points between Incident Management, BCM, and crisis management prevent gaps. Joint exercises and a unified early warning system ensure both disciplines work together seamlessly to build organizational resilience.
How does ADVISORI support crisis management system implementation?
ADVISORI guides you from assessing your existing crisis management maturity through ISO
22361 and BSI 200–4 aligned design to full implementation. We establish your crisis team, develop tailored crisis plans and playbooks, train your teams through realistic crisis exercises, and integrate crisis management into your BCM system. As experienced consultants, we bring cross-industry best practices and field-tested frameworks to your organization.
Latest Insights on Crisis Management (BCM)
Discover our latest articles, expert knowledge and practical guides about Crisis Management (BCM)
EU AI Act Enforcement: How Brussels Will Audit and Penalize AI Providers — and What This Means for Your Company
On March 12, 2026, the EU Commission published a draft implementing regulation that describes for the first time in concrete detail how GPAI model providers will be audited and penalized. What this means for companies using ChatGPT, Gemini, or other AI models.
NIS2 and DORA Are Now in Force: What SOC Teams Must Change Immediately
NIS2 and DORA apply without grace period. 3 SOC areas that must change immediately: Architecture, Workflows, Metrics. 5-point checklist for SOC teams.
Control Shadow AI Instead of Banning It: How an AI Governance Framework Really Protects
Shadow AI is the biggest blind spot in IT governance in 2026. This article explains why bans don't work, which three risks are really dangerous, and how an AI Governance Framework actually protects you — without disempowering your employees.
EU AI Act in the Financial Sector: Anchoring AI in the Existing ICS – Instead of Building a Parallel World
The EU AI Act is less of a radical break for banks than an AI-specific extension of the existing internal control system (ICS). Instead of building new parallel structures, the focus is on cleanly integrating high-risk AI applications into governance, risk management, controls, and documentation.
The AI-supported vCISO: How companies close governance gaps in a structured manner
NIS-2 obliges companies to provide verifiable information security. The AI-supported vCISO offers a structured path: A 10-module framework covers all relevant governance areas - from asset management to awareness.
DORA Information Register 2026: BaFin reporting deadline is running - What financial companies have to do now
The BaFin reporting period for the DORA information register runs from 9th to 30th. March 2026. 600+ ICT incidents in 12 months show: The supervisory authority is serious. What to do now.
Success Stories
Discover how we support companies in their digital transformation
Digitalization in Steel Trading
Klöckner & Co
Digital Transformation in Steel Trading
Results
AI-Powered Manufacturing Optimization
Siemens
Smart Manufacturing Solutions for Maximum Value Creation
Results
AI Automation in Production
Festo
Intelligent Networking for Future-Proof Production Systems
Results
Generative AI in Manufacturing
Bosch
AI Process Optimization for Improved Production Efficiency
Results
Let's
Work Together!
Is your organization ready for the next step into the digital future? Contact us for a personal consultation.
Your strategic success starts here
Our clients trust our expertise in digital transformation, compliance, and risk management
Ready for the next step?
Schedule a strategic consultation with our experts now
30 Minutes • Non-binding • Immediately available
For optimal preparation of your strategy session:
Prefer direct contact?
Direct hotline for decision-makers
Strategic inquiries via email
Detailed Project Inquiry
For complex inquiries or if you want to provide specific information in advance