CHAPTER 58

BUSINESS CONTINUITY PLANNING

Michael Miora

58.1 INTRODUCTION

58.1.1 Enterprise Risks and Costs

58.1.2 Types of Disasters

58.1.3 Recovery Scenarios

58.2 DEFINING THE GOALS

58.2.1 Scope

58.2.2 Correlating Objectives to Corporate Missions and Functions

58.2.3 Validating Goals

58.2.4 Mapping Goals to Recovery Phases

58.2.5 Emergency Issues

58.3 PERFORMING A BUSINESS IMPACT ANALYSIS

58.3.1 Establishing the Scope of the Business Impact Analysis

58.3.2 Interview Process

58.3.3 Describing the Functions

58.3.4 Definition of Departments and Functions

58.4 BUSINESS IMPACT ANALYSIS MATRIX ANALYSIS

58.4.1 Listing the Functions Organizationally

58.4.2 Finding Cross-Department Functions

58.4.3 Using the Ranking Factor

58.5 JUSTIFYING THE COSTS

58.5.1 Quantitative Risk Model

58.5.2 Generalized Cost Consequence Model

58.6 PLAN PRESENTATION

58.7 CONCLUDING REMARKS

58.8 FURTHER READING

58.1 INTRODUCTION.

We are in an age where businesses and governments are turning in increasing numbers to high-technology systems, and to the Internet, to gain and maintain their competitive advantage. Businesses of all types are relying on high-technology products to build, promote, sell, and deliver their wares and services—as are government, educational, and nonprofit enterprises. All of these are dependent on technology to maintain their income, image, and profitability. business continuity planning (BCP) is the process of protecting organizations from the deleterious effects on their missions that can ...