BCM (Business Continuity Management) — NIS2
Maintaining critical business processes during cyber incidents.
Practitioner's note: This article is practice-oriented compliance documentation, not legal advice. We are a compliance specialist, not a law firm. For legally binding information please consult a licensed lawyer.
Definition
BCM is a NIS2 obligation (Article 21 (2) (c)) for essential and important entities. Components: Business Impact Analysis (BIA), Recovery Time Objectives (RTO), Recovery Point Objectives (RPO), contingency plans, exercises. In the NIS2 Kit: BCM concept template plus RTO/RPO matrix.