PBSi Business Continuity Planning



Similar documents
The PNC Financial Services Group, Inc. Business Continuity Program

Business Continuity Planning (800)

The PNC Financial Services Group, Inc. Business Continuity Program

Disaster Recovery and Business Continuity Plan

PAPER-6 PART-1 OF 5 CA A.RAFEQ, FCA

Desktop Scenario Self Assessment Exercise Page 1

GAO. Year 2000 Computing Crisis: Business Continuity and Contingency Planning

BUSINESS CONTINUITY PLANNING

Business Continuity Plan

Business Continuity & Disaster Recovery

Business Continuity Management Governance. Frank Higgins Abu Dhabi March 2015

Meeting FFIEC Requirements: Enterprise-Wide Testing of Your. Business Continuity Plan

External Supplier Control Requirements BCM

Temple university. Auditing a business continuity management BCM. November, 2015

Business Resiliency Business Continuity Management - January 14, 2014

Business Continuity Planning and Disaster Recovery Planning

Federal Financial Institutions Examination Council FFIEC BCP. Business Continuity Planning FEBRUARY 2015 IT EXAMINATION H ANDBOOK

Information Security Policy. Chapter 11. Business Continuity

BUSINESS CONTINUITY MANAGEMENT IN THE PUBLIC SECTOR A ROUGH GUIDE

2015 CEO & Board University Taking Your Business Continuity Plan To The Next Level. Tracy L. Hall, MBCP

Audit of Physical Security Management

State of South Carolina Policy Guidance and Training

BUSINESS CONTINUITY PLAN

Business Continuity (Policy & Procedure)

BUSINESS CONTINUITY MANAGEMENT GUIDELINES FOR BANKS AND FINANCIAL INSTITUTIONS

Business Unit CONTINGENCY PLAN

Creating a Business Continuity Plan for your Health Center

Ohio Supercomputer Center

Shankar Gawade VP IT INFRASTRUCTURE ENAM SECURITIES PVT. LTD.

Federal Financial Institutions Examination Council FFIEC. Business Continuity Planning BCP MARCH 2003 MARCH 2008 IT EXAMINATION

Table of Contents... 1

University of Michigan Disaster Recovery / Business Continuity Administrative Information Systems 4/6/2004 1

Business Continuity and Disaster Planning

Business Continuity. Is your Business Prepared for the worse? What is Business Continuity? Why use a Business Continuity Plan?

Coping with a major business disruption. Some practical advice

Department of Information Technology Data Center Disaster Recovery Audit Report Final Report. September 2006

How To Manage A Disruption Event

Internal Audit Department NeighborWorks America. Audit Review of the Business Continuity Plan (BCP) Management and Documentation

Overview TECHIS Manage information security business resilience activities

Business Continuity Planning for Risk Reduction

Proposal for Business Continuity Plan and Management Review 6 August 2008

Business Continuity and Disaster Recovery Planning

CENTRAL BANK OF KENYA (CBK) PRUDENTIAL GUIDELINE ON BUSINESS CONTINUITY MANAGEMENT (BCM) FOR INSTITUTIONS LICENSED UNDER THE BANKING ACT

Why Should Companies Take a Closer Look at Business Continuity Planning?

Continuity of Operations Planning. A step by step guide for business

How to Design and Implement a Successful Disaster Recovery Plan

Institute for Business Continuity Training 1623 Military Road, # 377 Niagara Falls, NY

Unit Guide to Business Continuity/Resumption Planning

MHA Consulting. Business Continuity Management 101

THE ROLE OF LEAD GOVERNMENT DEPARTMENTS IN PLANNING FOR AND MANAGING CRISES

Flinders University IT Disaster Recovery Framework

COMCARE BUSINESS CONTINUITY MANAGEMENT

Documentation. Disclaimer

Guidance Note XGN XXX.1

Disaster Preparedness & Response

Disaster Recovery Planning Process

Ohio Conference for Payroll Professionals Disaster Recovery

A BCP Tale: From Theory to Practice

DISASTER RECOVERY PLANNING FOR CITY COMPUTER FACILITIES

Business Continuity Management

Business Continuity. Port environment

Interactive-Network Disaster Recovery

Contingency Planning and Disaster Recovery for BOMA

BUSINESS CONTINUITY POLICY

National Fire Protection Association s Contribution to Business Continuity Strategies

Chapter 1: An Overview of Emergency Preparedness and Business Continuity

Business Continuity Policy

Business Continuity Planning Preparing Your Organization

An Introduction to. Business Continuity Planning

Business Continuity Management

Business Continuity Management. Policy Statement and Strategy

Portal Storm: A Cyber/Business Continuity Exercise. Cyber Security Initiatives

Leveraging the IT Service Continuity Management framework Gord Novoselnik Business Continuity Office Enterprise Solutions Division

Developing a Business Continuity Plan... More Than Disaster

Supervisory Policy Manual

Overview of how to test a. Business Continuity Plan

Business Continuity Plan

Business Continuity Trends, Requirements and Expectations in Brian Zawada (MBCP) Director of Consulting Services Avalution Consulting

Information Security Management: Business Continuity Planning. Presentation by Stanislav Nurilov March 9th, 2005 CS 996: Info. Sec. Mgmt.

Birmingham CrossCity Clinical Commissioning Group. Business Continuity Management Policy

The Weill Cornell Medical College and Graduate School of Medical Sciences. Responsible Department: Information Technologies and Services (ITS)

EMERGENCY PREPAREDNESS PLAN Business Continuity Plan

DRAFT BUSINESS CONTINUITY MANAGEMENT POLICY

Business Continuity Management Policy

a Disaster Recovery Plan

DERBYSHIRE COUNTY COUNCIL BUSINESS CONTINUITY POLICY

Clinic Business Continuity Plan Guidelines

Business Continuity Management Framework

GUIDELINES FOR BUSINESS CONTINUITY IN WHOLESALE MARKETS AND SUPPORT SYSTEMS MARKET SUPERVISION OFFICE. October 2004

Assessing Your Disaster. Andrews Hooper Pavlik PLC. Andrews Hooper Pavlik PLC

SCADA Business Continuity and Disaster Recovery. Presented By: William Biehl, P.E (mobile)

1.0 Policy Statement / Intentions (FOIA - Open)

Business Continuity and Emergency Preparedness Planning. Vandita Zachariah, MA, MBA, CIA HHSC Internal Audit Division May 21, 2010

Transcription:

Business Continuity Planning

Definition Business Continuity planning is a planning process designed to reduce the risk that disruptive failures or events could seriously harm your business. It is designed to safeguard your business by ensuring the continuity of a minimum set of business functions and a smooth return to normal operating conditions when the crisis is over.

Causes of Failure Failures or events may be external or internal in nature External: Loss of power, communications, flooding, interruption of supply chain Internal: Loss of information, fire, corrupted IT systems, loss of key personnel

Purpose Provide predetermined actions to Allow prompt resumption of critical functions Reduce decision making during recovery operations Allow return to normal operating conditions at the earliest possible time Minimize financial loss and hardship Minimize the extent of interruption

Required By US Securities Exchange Commission for companies >$10M Emergency Preparedness Canada for all Government Departments National Contingency Planning Group and Treasury Board Secretariat for Mission Critical government functions for Y2K Fortune 500 Companies best practices

Business Plans, Policies, Objectives, Procedures Integration Plans Business Continuity Planning Requirements Analysis (scoping study) Business Continuity Management Plan Lifecycle Maintenance Update Risk Assessments Project Risk Assessment Strategic Risk Assessment Implementation Strategy Test / Validate / Update Plans Update Risk Assessments Integrated Risk Assessment Risk Management Options Risk Assessment Business Risk Assessment Business Impact Analysis (BIA) Aggregate Continuity Plan Options Analysis

Benefits of Contingency Planning Successfully deal with threats to survival Successfully deal with threats to continuing operations Successfully deal with interruptions of critical functions Allows comprehensive planning and implementation of procedures that do not have to be invented in time of crisis

Business Continuity Planning Readiness Posture Risk Mitigation Contingency Planning Preparedness / Prevention Determine Workarounds Stockpile Establish Redundant Systems Remediate / Replace Current Systems Crisis Response Posture Contingency Planning (Disaster Recovery) Crisis Response Execute Established Procedures Transition and Recovery Posture Business Resumption Planning Return to Normalcy Restore Failed Systems Return to Pre-Crisis Operations AIM: Prevent Failure of Critical Business Functions AIM:To Restore a Minimum Level of Service Within the Required Timeframe AIM: To restore Normal Operating Conditions Normal Service Level Minimum Service Level Time

Process Diagram Risk Assessment Business Function Analysis Contingency Planning Crisis Response Recovery Planning Training Testing

Process Steps Risk Assessment Business Function Analysis Contingency Planning Crisis Response Recovery Planning Training Test / Validate / Update Plans

Risk Assessment Appraisal/review of existing documents, policies, business plans and disaster recovery plans Risk identification ensures that risks associated with all facets of business operations are captured Risk register is produced

Business Function Analysis Define business functions and relative criticality Map assets and interdependencies of critical business functions Determine consequence of failures and identify key vulnerabilities Determine the minimum service level and identify gaps in ability to deliver minimum service level in a crisis.

Assets & Interdependencies Critical Function Assets IT Systems IT Infrastructure End User Computing Internal/ External Interfaces Embedded Systems Facilities Others Functional Interdependencies Employees Clients Companies Suppliers Other Government Departments Others Infrastructure Interdependenci es Utilities Services Transportation Safety Communication Government Services Others

Contingency Plan Define options for the plan wrt to function, process, system and people Define responsibility and reporting Identify resources required to invoke plan and procedures Cost benefit analysis to select cost effective procedures

Crisis Response Crisis response activities include reporting and management response Developing plans and procedures to assess failures Describing thresholds for invoking contingencies Describing individual responsibilities and authorities

Recovery Planning Defines the planning necessary to return to normal operating conditions after a crisis. Dependent on the nature of business and contingency plans developed todate

Business Continuity Plan Contingency Plan Overview Training, Test & Maintenance Plan Departmental Crisis Definition Contingency Plan Crisis Response Plan Business Resumption Plan Crisis Scenarios Contingency Procedures & Triggers Crisis Response Procedures Business Resumption Procedures

Training Develop training plan Conduct the training for the implementation of the business continuity plan Record lessons learned Make recommendations for changes to business continuity plan and procedures

Testing Design test program, write test scenarios and exercises, and conduct the test of business continuity plans Tests may be structured walkthrough, operational or live exercise Assess performance Validate test and gather lessons learned Develop recommendations and implement

Network Timeline 1 2 3 4 5 6 7 8 9 10 11 12 13 14 Risk Assessment Business Function Analysis Contingency Planning Crisis Response Recovery Planning Training Testing Business Continuity Plan

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information