There're seven (7) progressive steps for business continuity planning. They're:
1. Develop the contingency planning policy statement.
A formal department or agency policy provides the authority and guidance necessary to develop an effective contingency plan.
2. Conduct the business impact analysis (BIA).
The BIA helps to identify and prioritize critical IT systems and components. A template for developing the BIA is also provided to assist the user.
3. Identify preventive controls.
Measures taken to reduce the effects of system disruptions can increase system availability and reduce contingency life cycle costs.
4. Develop recovery strategies.
Thorough recovery strategies ensure that the system may be recovered quickly and effectively following a disruption.
5. Develop an IT contingency plan.
The contingency plan should contain detailed guidance and procedures for restoring a damaged system.
6. Plan testing, training, and exercises.
Testing the plan identifies planning gaps, whereas training prepares recovery personnel for plan activation; both activities improve plan effectiveness and overall agency preparedness.
7. Plan maintenance.
The plan should be a living document that is updated regularly to remain current with system enhancements.
1. Develop the contingency planning policy statement.
A formal department or agency policy provides the authority and guidance necessary to develop an effective contingency plan.
2. Conduct the business impact analysis (BIA).
The BIA helps to identify and prioritize critical IT systems and components. A template for developing the BIA is also provided to assist the user.
3. Identify preventive controls.
Measures taken to reduce the effects of system disruptions can increase system availability and reduce contingency life cycle costs.
4. Develop recovery strategies.
Thorough recovery strategies ensure that the system may be recovered quickly and effectively following a disruption.
5. Develop an IT contingency plan.
The contingency plan should contain detailed guidance and procedures for restoring a damaged system.
6. Plan testing, training, and exercises.
Testing the plan identifies planning gaps, whereas training prepares recovery personnel for plan activation; both activities improve plan effectiveness and overall agency preparedness.
7. Plan maintenance.
The plan should be a living document that is updated regularly to remain current with system enhancements.
Nenhum comentário:
Postar um comentário