Ely, Cambridgeshire : , : IT Governance Publishing, , 2013

1-84928-468-7

1 online resource (224 p.)

005.86

Database management

Information technology - Management

Risk management

Electronic books.

Inglese

Description based upon print version of record.

Includes bibliographical references.

About the Author; Contents; Introduction; Chapter 1: Introducing Business Continuity Management; What is business continuity management?; Evolution; The business continuity management system (BCMS); The relationship between business continuity and disaster recovery; Cause and effect; BCM policy; What is policy?; The policy statement; Use of the policy; Chapter 2: Overview of the BCM Process; Context of the organisation; Understanding of the organisation and its context; Understanding the needs and expectations of interested parties

Determining the scope of the business continuity management systemBusiness continuity management system; Leadership; Policy; Roles, responsibilities and authorities; Planning; Support; Provision of resources; Competency of BCM personnel; Awareness and communication; Documentation; Operation; Business impact analysis; Risk assessment; BCM strategy; BCM response; Exercising and testing; Performance evaluation and improvement; The PDCA cycle; Practical programme management; Set-up phase; Ongoing/maintenance phase; End products; Resources; Governance and assurance processes

Chapter 3: Business Impact Analysis and Risk AssessmentBusiness impact analysis; What is BIA?; Non-financial impacts; Impact treatment;

Identifying the activities; Suppliers; Collecting the data; Impact data analysis; Recovery time objectives; Partial and full recovery; Tools; The role of insurance; Disaster recovery resources; Mapping and analysis; Identifying resources; Conflicts; Tools; Risk identification, assessment and management; What is risk?; Practical operational risk management; Risk identification; Scope; Custom and practice; Threats; Multiple threats; Risk assessment

The risk matrixRisk appetite; Risk analysis; Risk control and treatment; Preventative and curative measures; The risk management process; Chapter 4: Business Continuity Strategy; IT disaster recovery; Availability; Failover; The ITDR marketplace; Reciprocal and co-operative arrangements; Go out and buy it; People; The rest of the resource spectrum; BCM objectives; Deliverables; Chapter 5: Business Continuity Procedures; The incident response structure; Command structure - teams and roles; Teams and structure; Roles; Collecting information; Communicating with stakeholders

Team resilience - deputiesTriggering the BCM response - activation; Business continuity planning; Master plan; Summary; Activation; Command location; Command structure; Priorities and objectives; Scenario plans; Recovery plans; Other plan components; Procedures; Incident log; Internal communication; Contact data; How the plan works; Multilevel (organisational) plans; Ending the business continuity phase; Recovery; Chapter 6: Exercising and Testing; Exercises; Planning the exercise; Execution; Reporting; Chapter 7: Performance Evaluation; Monitoring and measurement; Criteria; The BCMS

Internal audit

A concise and practical guide to the ISO22301 benchmark for business continuity management. Essential reading for all managers, executives and directors with any interest or involvement in operational risk or business continuity management.