Business Continuity Planning in a Hospital Environment 1

In Hungary, the identification and designation of the critical infrastructures of the healthcare sector began in 2016, including the inpatient care sub-sector. Act CLXVI of 2012 on the Identification, Designation and Protection of Critical  Systems and Facilities and its implementing decree,  Government Decree 65/2013 (III.8.) on the implementation  of Act CLXVI of 2012 on the identification, designation and  protection of critical systems and facilities requires  operators of designated system components to prepare an  Operator Security Plan. The ISO 22301 standard, which has  been proven in international practice for operator security  planning, is available and describes how professionals can  design Business Continuity Management Systems (BCMS).  Additional requirements for the health sector are set out in  Government Decree 246/2015 (IX.8.) on the identification,  designation and protection of health-critical systems and  facilities. In public administration and thus in the healthcare  sector, the practical application of a profit-oriented approach, and the focusing on the maintenance of ‘production’, is not the common practice. The concepts of  profit and production are difficult to apply. The study examines the fundamentals of BCM, thus the Stakeholder  Analysis and Business Impact Analysis (BIA) in public  health.