As far as business jargon goes, “critical event management” is actually a pretty decent definition. It is fairly self-explanatory, and over the past few years, professionals in the fields of safety, risk management, and business continuity have come to recognize and use it fairly consistently.
With that said, I feel like there is quite a bit of room for improvement in both understanding the basics, but in how the discipline has changed and what it requires today.
Critical event management (or CEM) is your company’s approach to handling major disruptions (aka critical events) before, during, and after they occur. In other words, critical event management is not just about responding when things go wrong—it's about having the right information, processes, and tools to identify potential threats early, notify the right people quickly, manage your response effectively, and then recover efficiently.
This is not a particularly novel nor unusual definition, and, as I mentioned earlier, it is fairly intuitive. What’s more, most businesses have some version of critical event management set up already.
Why, then, should you care?
In the last few years, the business world’s approach to disruptions has changed rapidly:
For all these reasons, disruptions have to be calculated much, much more rapidly, and companies need to respond with increased vigilance and savvy. But, let’s not get ahead of ourselves—let’s start with the basics.
Several types of events typically trigger your critical event management processes:
Environmental disasters: Heat and cold stress, tornadoes, hurricanes, wildfires, floods, earthquakes, can all present a threat to your people, assets, and operations.
Human-caused events: Active shooter situations, protests, civil unrest, and other security threats that could impact your people or locations.
Public health emergencies: Pandemics, disease outbreaks, or other health crises that affect your workforce or community.
Supply chain disruptions: Major transportation issues, supplier failures, or global shortages that impact your ability to operate.
But here's the thing: a truly effective CEM program isn't limited to specific event types. The best applications are flexible enough to handle any significant disruption, regardless of its source. The key to controlling risk is building capability around situational awareness, communication, and coordinated action—skills that translate across virtually any crisis scenario.
Critical event management consists of these main components:
Preparation: Contingency planning, training and drills, communication templates and playbooks.
Monitoring: Continuously scanning for potential threats or disruptions. This means tracking everything from weather patterns to social media trends to security alerts.
Classification: deciding what threat is relevant for the business.
Alerting: Quickly notifying the right people — typically employees, but also potentially contractors, customers, and the public — when a threat is identified.
Response: Coordinating your organization's actions during the event. This includes activating response teams, implementing emergency procedures.
Recovery: Getting back to normal operations as efficiently as possible. This includes assessing damage, reallocating resources, and basically returning to the pre-event state as soon as possible.
While all these components are indeed important, defining CEM this way almost inevitably leads to two pitfalls:
Instead, modern critical event management should be thought of as a virtuous cycle, with an organizationally integrated sense of ongoing preparedness and ability to handle any disruption and learn from it.
Here, the temptation is to list the issues that plague any industry and company: organizational silos, expensive and inefficient technologies, and the rising costs of…well, everything. However, I think of these issues as symptoms of a wrong approach to critical event management, rather than causes.
Here is how this plays out:
Instead:
- Executives should have a clear, holistic approach to all types of risks, and how they are managed
- The organizations should approach events as learning opportunities with forensic analysis that translates into team commitment and sharing of information
- Teams like operations and safety should work together to identify how one and same resilience measure can save both lives and money
Then we can have clear insight into excellence and productivity gains, as teams coalesce and gain solidarity. It also helps organizations escape from a drift cycle where what is learned from one negative impact is codified into abstract rules and procedures which then are subject to institutional drift.
How we build technology directly stems from how we understand the discipline. When critical systems operate in isolation—when safety protocols don’t communicate with business continuity platforms, or environmental monitoring is cut off from operational risk management—organizations create dangerous blind spots.
Rather than building to fit antiquated, siloed models, new technology works from a point of view that’s both flexible enough to fit a single team on the ground with its individual needs, and expansive and agile enough to easily spread to the organization, and provide visibility—to both management and people on the ground—into all risks, employees, assets, and processes.
The world is increasingly interconnected not only by the traditional web but now by the internet of things. IoT devices are omnipresent and provide the sixth sense for identifying hazards. Technology thus needs to and can take into account today’s fast-moving, complex, and deeply interconnected risks, and provide organizations with the ability to not only mitigate, respond, and recover, but learn, share, and minimize future risk.
Here are just some of the technology capabilities that support modern Critical Event Management:
Modern Critical Event Management lies in both organizational and technical tendencies. On the one hand, more empowered, connected individuals and teams, on the other, technical solutions that promote system integration and flexibility. Here are some examples of what’s out there and what’s coming:
Seamless Enterprise Integration:
Advanced Technical Infrastructure, with Customization and Scalability
Comprehensive Analytics
Security and Compliance Features
Data Processing
In short, modern CEM lies at the intersection of organizational philosophy and technology — and while this may seem grandiose and unachievable, the truth is that kernels of good CEM can be planted at any level and on any team, no matter how small. It can be as simple as automating a few manual processes, making sure that information is disseminated and that learnings are shared locally and across the organization. The technology is there to support sharing the successes across the board.
Lorem ipsum dolor sit amet, consectetur adipiscing elit. Suspendisse varius enim in eros elementum tristique. Duis cursus, mi quis viverra ornare, eros dolor interdum nulla, ut commodo diam libero vitae erat. Aenean faucibus nibh et justo cursus id rutrum lorem imperdiet. Nunc ut sem vitae risus tristique posuere.
As a public benefit corporation, our heartbeat is people’s safety. At Kepler51, we
work with you to create a safer world for your employees and the public.