Disaster recovery plan (DEP) is carried out when everything is still in emergency mode, and everyone is scrambling to get all critical systems back online. Business continuity plan (BCP) takes a broader approach to the problems.
Continuity policy ==> BIA (business impact analysis) ==> identify preventive controls ==> develop recovery strategies ==> develop BCP ==> exercise ==> maintain BCP
8.2 BCP project components
At lease following departments:
business units, senior management, IT department,security department, communications department, legal department.
BCP need include following information:
objective to task map, resource to task map, workflows, milestones, deliverables, budget estimates, success factors, deadlines
8.3 Preventive measures and Data backup
Define business function and supporting department;define function and department; discover possible disruption that affect the mechanisms necessary to allow these departments to function together; identify threats; grater quantitative and qualitative information pertaining to threats; provide alternative methods of restoring functionality and communication; provide a brief statement of rationale for each threat and corresponding information.
full backup ==> different process ==> incremental process
8.4 Recovery restoration
Construct(teams):
damage assessment, legal, media relation, recovery relocation, restoration, salvage, security.
damage assessment steps:
reason of the disaster, further damage, affected business functions and areas, functionality for the critical resources,resources replacing, how long take back, if longer than estimated MTD values, then public BCP.
没有评论:
发表评论