|
Most Business Continuity Plans cover four kinds of disruption:
| |
| 1. |
Loss of IT |
| 2. |
Loss of telecommunications |
| 3. |
Loss of site |
| 4. |
Fire |
|
| |
Although these are four key threats that need to be planned for
there are many others that should also be considered.
 |
It is unrealistic for Business Continuity
Plans to be drawn up to cover every eventuality. All companies
can benefit from using a risk management process in their
Business Continuity Planning. The process provides a possible
framework to link the strategy of the company to the risks
that pose the greatest threat to the business and then to
consider how a Business Continuity Plan can be drawn up.
You can access the Risk Management Process by Clicking
Here. |
From the Strategy, the key business processes and the risks attached
to them should be identified together with those controls in place
or under consideration that can prevent or reduce the impact of
any failure. This is best done by a diverse group of colleagues
to get the most comprehensive review.
 |
This exercise uses a Severity Table
to allow you to map a business continuity risk in terms of
severity and probability.
Step One: Select a Risk
from the list below the Severity Table e.g. Theft
Step Two: Via
the column on the left-hand side, consider the Level of
Impact the risk will have e.g. Slight or 2 - 7 Days.
Step Three:
Via the Occurance row along the top of the table, consider
the regularity of the risk and then Drag and Drop
the risk into the appropriate cell.
The box next to Risk will then change
colour depending upon whether you need to:
| |
Improve the situation. |
| |
Create threat barriers and improve recovery preparedness. |
| |
Solve the situation immediately. |
You require at least version 6 of FLASH player and
have JavaScript enabled to view interactions on
this page. At least one of these criteria has not
been met!
|
|
This will show you which ones require controls. The Rain-Bowtie exercise
in Bite 3 will show you how to consider appropriate controls.
| 