Undertaking the DR Business Impact Analysis (BIA)
|
|
- Kathryn Jenkins
- 6 years ago
- Views:
Transcription
1 Undertaking the DR Business Impact Analysis (BIA) > David Danher National Practice Manager >Business Consulting Services >25 th March 2009
2 Agenda Who is Thomas Duryea? Disaster Recovery Programme Overview The DR Business Impact Analysis (BIA) The Consequence Table The BIA Spreadsheet Workshopping the BIA Spreadsheet Application Impact Rating MAO RTO RPO BIA Analysis & Report Thomas Duryea s IT DR Offerings 2
3 Who is Thomas Duryea? Company Overview Founded in 2000 Total employees: 85+ Offices in MLB, SYD & BNE Average growth of 300% pa Recent Awards VMware Partner of the Year 2008 Deloitte 2008 Tech Fast 50 [2 nd place] BRW Fast [6 th place] Ingram Micro 2008 Rising Star BRW ANZ 2008 Fastest Growing Private Business of the Year 3
4 Solutions & Services Strategic Technology Partners Enterprise Information Systems Data Centre Solutions Managed Services Systems Management Business Consulting Services Information Worker Solutions 4
5 Disaster Recovery Programme Overview Policy & Standards Framework Business Impact Analysis (BIA) Consequence Table Application importance to the Business Maximum Allowable Outage (MAO) Recovery Time Objective (RTO) Recovery Point Objective (RPO) Threat and Vulnerability Assessment Decide DR Solution Implement DR solution Train, Test, Review, Report, Maintain, Audit 5
6 Tangible Impacts Intangible Impacts Developing the BIA Consequence Table Aligns with HB Business Continuity Management Standard Business area of impact on left hand side Description of consequences left to right (low to high) Recommendation: Limit the number of Intangibles Severity/ Consequence Areas of Impact Stakeholders Product Image/Brand Financial Insignificant (1) No impact on clients/ stakeholders. No impact to Product No Impact to Image or Brand No loss of revenue Minor (2) Minor disruption of access to service for clients/stakeholders. Minor disruption to shipping product to distributers Negative publicity but can easily be countered Moderate (3) Major disruption of access to service for clients/ stakeholders. Major disruption to shipping product to distributers and/or customer delay in acquiring product. Adverse publicity in local media or negative customer feedback Unrecoverable Title loss of presentation of Unrecoverable loss revenue of up to $10K of revenue of between $10K and $50K Major (4) Significant loss of access to service for clients/stakeholders. Significant disruption to shipping product to distributers and/or major customer delay in acquiring product. Adverse publicity in national media or significant customer feedback Unrecoverable loss of revenue of between $50K and $100K Catastrophic (5) No service available to clients/ stakeholders. Complete inability to ship product to distributers or customers Adverse publicity in international media, very serious litigation including class action Unrecoverable loss of revenue of more than $100K 6
7 Developing the BIA Spreadsheet Applications and Dependencies Aligns with HB Business Continuity Management Standard Build by Site, Application Group, Applications and Dependencies Multiple Sites, Application Groups, Applications and Dependencies are allowed Note: Dependencies are Applications within their own right Site Application Group Applications Dependencies IT Manager Business Owner Prod All of Business AccPac Active Directory #REF! #REF! SQL #REF! #REF! Internet Gateway #REF! #REF! SQL Active Directory #REF! #REF! Exchange Active Directory #REF! #REF! Internet Gateway #REF! #REF! Internet Gateway Active Directory #REF! #REF! Active Directory 7
8 Developing the BIA Spreadsheet Areas of Impact and Timeframes Add Areas of Impact and timeframes to measure the Impacts against Add Total Impact Rating math Site Application Group Applications Dependencies Business Impact - Interval 1 1 hour Intangible Impacts Product Image / Brand Tangible Impacts Financial Business Impact - Interval 2 1 day Intangible Impacts Product Image / Brand Tangible Impacts Financial Business Impact - Interval 3 1 week Intangible Impacts Product Image / Brand Tangible Impacts Financial Stakeholders Stakeholders Stakeholders Stakeholders Business Impact - Interval 4 1 month Intangible Impacts Product Image / Brand Tangible Impacts Financial Total Impact Rating Prod All of Business AccPac Active Directory #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! SQL #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! Internet Gateway #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! SQL Active Directory #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! Exchange Active Directory #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! Internet Gateway #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! Internet Gateway Active Directory #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! Active Directory 8
9 Total Impact Rating Developing the BIA Spreadsheet Recovery Objectives Add MAO, RTO (required and current) & RPO (required and current) Add Mitigation Strategies MAO, RTO & RPO MAO Required RTO Current RTO Required RPO Current RPO Mitigation Strategies Minutes Hours Days Minutes Hours Days Minutes Hours Days Minutes Hours Days Minutes Hours Days Viable Work Around Time to Implement Work Around Minutes Hours Days DRP in Place DRP Tested Date #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! #REF! 9
10 BIA Workshop Areas of Impact Workshop with both Business and IT representatives Using consequence table, complete values for each individual application Site Application Group Applications Dependencies Stake- Holders Business Impact 1 Hour Intangible Impacts Product Image / Brand Tangible Impacts Financial Stake- Holders Business Impact 1 Day Intangible Impacts Product Image / Brand Tangible Impacts Financial Business Impact 1 Week Intangible Impacts Stake- Product Holders Image / Brand Tangible Impacts Financial Stake- Holders Business Impact 1 Month Intangible Impacts Product Image / Brand Tangible Impacts Financial Total Impact Rating Prod All of Business AccPac Active Directory SQL Internet Gateway SQL Active Directory Exchange Active Directory Internet Gateway Internet Gateway Active Directory Active Directory
11 BIA Workshop Recovery Objectives Total Impact Rating Workshop with both Business and IT representatives Add MAO, RTO (required and current)& RPO (required and current) Note: The 1st BIA may deliver a large gap between required and current requirements Complete Mitigation Strategies (if applicable) MAO, RTO & RPO MAO Required RTO Current RTO Required RPO Current RPO Minutes Hours Days Minutes Hours Days Minutes Hours Days Minutes Hours Days Minutes Hours Days Viable Work Around Mitigation Strategies Time to Implement Work Around Minutes Hours Days DRP in Place DRP Tested Date no no no no no no no no no no no no no no no no no no no no no no no no 11
12 BIA Analysis & Report Analysis of data gathered in workshop Compares Business requirements against current IT capability Takes multiple views Whole of Company Site Application Group Application & dependencies Report Charts Commentary Delta is the DR solution Current vs. Required 12
13 BIA Analysis Amending the Total Impact Rating Modify Dependency rating so that it is, at minimum, equal to Application rating Site Application Group Applications Dependencies Original Total Impact Rating Total Impact Rating Work New Total Impact Rating Prod All of Business AccPac Active Directory SQL Internet Gateway SQL Active Directory Exchange Active Directory Internet Gateway Internet Gateway Active Directory Active Directory
14 BIA Analysis Amending the MAO, RTO & RPO Amend MAO,RTO & RPO values to a common denominator Site Application Group Applications Dependencies MAO, RTO & RPO Application MAO MAO Application RTO Required Current Application RPO for Required Current MAO Required RTO Current RTO Required RPO Current RPO for Charting for Charting RTO RTO Charting RPO RPO Minutes Hours Days Minutes Hours Days Minutes Hours Days Minutes Hours Days Minutes Hours Days Dependencies Days Dependencies Days Days Dependencies Days Days Purposes Only Purposes Only Purposes Only Prod All of Business AccPac Active Directory SQL Internet Gateway SQL Active Directory Exchange Active Directory Internet Gateway Internet Gateway Active Directory Active Directory
15 BIA Analysis - Charting 15
16 BIA Analysis - Reporting 16
17 TD s IT Disaster Recovery Offerings DR Capability & Readiness Assessment DR BIA Assessment DR Programme Implementation DR Programme Management Assesses current environment against standards & documents recommendations Builds Spreadsheet, conducts workshop, analyses findings and documents recommendations Implements all phases of the DR programme Individually tailored for organisations of any size. Reviews all phases of the DR programme Individually tailored for organisations of any size. Ideal client Organisations who are unsure of their DR capability or readiness Organisations who need to build a DR business case Ideal client Organisations who need to document new or review their application s business recovery objectives Includes Threat & Vulnerability Assessment for SMBs Ideal Client Organisations who understand what constitutes and needs to implement the DR Programme. Ideal Client Organisations who need to review their DR Programme. Price $5,000* Price $15,000* Price on Application Price on Application * Excludes travel costs and expenses 17
18 Questions? David Danher National Practice Manager Business Consulting Services Phone: Mobile:
Business Continuity. Building a Program Fit for Purpose
Business Continuity. Building a Program Fit for Purpose Tim Janes. Director Fulcrum Risk Services Tuesday 2 September. 11.30-12.45 T Janes. BC SLIDES. RIMS Risk Forum Aust 2014 v1.0 Building a BC Program
More informationBusiness Continuity & IT Disaster Recovery
Business Continuity & IT Disaster Recovery DONALD L. SCHMIDT, ARM, CBCP, MCP, CBCLA, CEM PREPAREDNESS, LLC MARCH 30, 2017 www.preparednessllc.com What are Business Continuity & IT Disaster Recovery? BUSINESS
More information5/28/2018. Disaster Recovery Are You Ready. Speaker. Agenda
Disaster Recovery Are You Ready Central Iowa American Payroll Association 2017 Statewide Conference Friday October 6 Speaker Bruce E. Phipps CPP APA Vice Presindent 2011 APA Payroll Man of the Year Principal
More informationGlobal Crises: What We Really Need to Do to Be Prepared. Day One / Session C5
Global Crises: What We Really Need to Do to Be Prepared Day One / Session C5 April 12, 2010 Clyde Berger Adam Chusid 0 Today s Objectives Present practical solutions for building a viable sustainable program
More informationBusiness Continuity/ Disaster Recovery. Sean Gunasekera
Business Continuity/ Disaster Recovery Sean Gunasekera Course Outline and Structure Week 1 Security Governance Week 2 Managing Security in the organisation Risk Management Week 3 Risk management Breaches,
More informationBCP Methodology Benefits realisation
www.pwc.com.cy BCP Methodology Benefits realisation Risk Assurance Consulting (RAC) Risk Assurance Consulting (RAC) helps management to make well informed decisions. The insight and independent assurance
More informationAgenda. Enterprise Risk Management Defined. The Intersection of Enterprise-wide Risk Management (ERM) and Business Continuity Management (BCM)
The Intersection of Enterprise-wide Risk (ERM) and Business Continuity (BCM) Marc Dominus 2005 Protiviti Inc. EOE Agenda Terminology and Process Introductions ERM Process Overview BCM Process Overview
More informationLoch Lomond & The Trossachs National Park Authority. Annual internal audit report Year ended 31 March 2015
Loch Lomond & The Trossachs National Park Authority Annual internal audit report Year ended 31 March 2015 Contents This report is for: Information Chief executive Audit committee Jaki Carnegie, director
More informationBusiness Continuity Planning and Disaster Recovery Planning
4 Business Continuity Planning and Disaster Recovery Planning Learning Objectives To understand the concept of Business Continuity Management; To understand the key phases and components of a Business
More informationNavigating the Intersection of Vendor Management and Business Continuity
Navigating the Intersection of Vendor Management and Business Continuity MICHAEL BERMAN, J.D. Table of Contents Why are we here? Business Continuity and Vendor Management Primary Intersection BCP Each
More informationRisk Management Policy Arvind Infrastructure Limited
Risk Management Policy Arvind Infrastructure Limited 0 Risk management 1.1 Purpose Arvind Infrastructure Limited is committed to high standards of business conduct and to good risk management to: 1. achieve
More informationIntroducing ISO 22301
Introducing ISO 22301 1 2 Background How was the ISO22301 formed? Contributors 3 Context 4 Source documents included BS25999-2 NFPA 1600 ASIS OR standard Singapore standards ISO 27031 ISO Guide 73 ISOPAS22399
More informationSTRATEGIC CASE RESILIENCE INSIGHTS
STRATEGIC CASE RESILIENCE INSIGHTS PURPOSE This note is for Agency staff and consultants who are developing strategic cases where resilience is identified as a problem. It gives examples and insights using
More informationHead of Security and Business Continuity
Services Security and Business Continuity Ser-Sec-003 07/11/2017 Author Name Author Job Title Alan Cain Head of Security and Business Continuity Version No. 1.1 EIA Approval Date 28/06/2017 Committee Recommend
More informationInside of a ring or out, ain t nothing wrong with going down. It s staying down that s wrong. Muhammad Ali
MANAGING OPERATIONAL RISK IN THE 21 ST CENTURY White Paper Series Inside of a ring or out, ain t nothing wrong with going down. It s staying down that s wrong. Muhammad Ali 2 In today s competitive and
More informationREQUEST FOR PROPOSAL
COLORADO HOUSING AND FINANCE AUTHORITY REQUEST FOR PROPOSAL (RFP) COLORADO HOUSING AND FINANCE AUTHORITY 1981 BLAKE STREET DENVER, CO 80202 REQUEST FOR PROPOSAL Technology Assessment POSTED: 11/17/2017
More informationA Guide to Business Continuity
A Guide to Business Continuity Getting Started Business Continuity Management is a process driven from the top of the organisation. The first stage has to be an acceptance by the Board or the Executive
More informationCitizens Property Insurance Corporation Business Continuity Framework
Citizens Property Insurance Corporation Framework Dated September 2015 Approvals: Risk Committee: September 17, 2015 (via email) Adopted by the Audit Committee: Page 1 of 12 Table of Contents 1 INTRODUCTION...
More informationLMS Selection in High Consequence Industries
LMS Selection in High Consequence Industries Panelists: Michael Rochelle Chief Strategy Officer Brandon Hall Group Alex Poulos Chief Marketing Officer NetDimensions RESEARCH PRACTICES Learning & Development
More informationProtecting Information Assets - Week 9 - Business Continuity and Disaster Recovery Planning. MIS 5206 Protecting Information Assets
Protecting Information Assets - Week 9 - Business Continuity and Disaster Recovery Planning MIS5206 Week 9 Case study discussion Business Continuity Planning (BCP) and Disaster Recovery (DR) Planning Test
More informationTechnology evolution. Managing the risk in four key areas
Technology evolution Managing the risk in four key areas The message is widespread: the concept of as-a-service is real and has the potential to unleash the power of processing, increased capacity, cost
More informationPosition Description Consultant Employment and Industrial Relations
Position Description Consultant Employment and Industrial Relations Livingstones Our ref: Consultant - Employment and Industrial Relations - Precedent (00190480-2).DOCX - Prepared by Livingstones
More informationEssential Concepts. For Effective. Business Continuity Planning
Essential Concepts For Effective Business Continuity Planning 1 What is a Business Continuity Plan (BCP)? A Business Continuity Plan (BCP) is a comprehensive set of business strategies and actions designed
More informationBusiness Resilience They Cannot Do This Without You!
Business Resilience They Cannot Do This Without You! Maureen Roskoski, Facility Engineering Associates PC Laurie Gilmer, Facility Engineering Associates PC Meet Our Presenters: Maureen K. Roskoski, CFM,
More informationBusiness Continuity Planning. LGMA Conference October 27, 2011 Presented by Lisa Benini
Business Continuity Planning LGMA Conference October 27, 2011 Presented by Lisa Benini What is it? Business Continuity Planning Definition: Process of developing and documenting advance arrangements and
More informationASSESSMENT VALIDATION AND MODERATION. Assessment Validation and Moderation
ASSESSMENT VALIDATION AND MODERATION Macquarie Commercial College ( MCC ) Page 2 of 7 Policy 1.0 Policy To ensure that all assessment and marking are valid, accurate fair and flexible. MCC will conduct
More informationSo, How Will You Audit a Risk Assessment in ISO 9001:2015?
So, How Will You Audit a Risk Assessment in ISO 9001:2015? Bob Deysher Senior Consultant Quality Support Group, Inc. bob.deysher@qualitysupportgroup.com 2017 QSG, Inc. Inc. Questions? Does ISO 9001:2015
More informationWORK PLACE LEARNING - APPRENTICESHIPS Customer Service and Business Admin Assessor/Trainer
WORK PLACE LEARNING - APPRENTICESHIPS Customer Service and Business Admin Assessor/Trainer August 2017 Riverside College is a highly popular and successful further education college conveniently located
More informationManaged IT Services. Eliminating technology pains in small businesses
Eliminating technology pains in small businesses Having a complete IT department is not a viable solution for most small businesses, and very few small companies can afford to deploy even one permanent
More informationASSESSMENT VALIDATION AND MODERATION
ASSESSMENT VALIDATION AND MODERATION Macquarie Commercial College ( MCC ) Page 2 of 11 Policy 1.0 Policy To ensure that all assessment and marking are valid, accurate fair and flexible. MCC will conduct
More informationMelanie Quinlan, Business Continuity & Compliance Manager, Resources & Quality Assurance
Executive Board meeting, 26 June 2017 Agenda item: 8 Report title: Report by: Action: Business Continuity Working Group update Melanie Quinlan, Business Continuity & Compliance Manager, Resources & Quality
More informationEFFECTIVE ROOT CAUSE ANALYSIS
EFFECTIVE ROOT CAUSE ANALYSIS David Tooth CEngFIMechE Copyright 2011 Sologic, LLC. All Rights Reserved. 1 What RCA is NOT... A search for a Single Root Cause Root Cause!) A search for a Quick Fix! A search
More informationBuilding a Standard for Business Continuity Planning
Building a Standard for Business Continuity Planning John Lugo Sr. Business Continuity Analyst April 17, 2012 1 April 16 18, 2012 Talking Stick Resort Scottsdale, Arizona Business Continuity @ Citrix Statistics
More informationBusiness Continuity & Risk Management
Business Continuity & Risk Management David Muil, Global VP Business Development 1 Intertek 2013, Agenda Understanding Risk Business Continuity Management Risk assessment Summary 2 Intertek 2013, Risk
More informationSupply Chains and Small Business
Supply Chains and Small Business One Aspect of the Small Business Challenge Recovery Point Objective Maximum Tolerable Period of Disruption (MTPod) Help! Business Impact Analysis (BIA) Management Systems
More informationBusiness Continuity Framework
Business Continuity Framework A definition to the Components of Resiliency March, 1 Business Continuity Framework 1. INTRODUCTION... 3 2. PURPOSE... 3 3. THE FRAMEWORK... 4 4. STEERING COMMITTEE... 5 5.
More informationBusiness Continuity Management Policy and Framework
Management Policy and Framework Version: 9 Produced by: University Manager with the assistance of the Operational Group Date Produced: 11 th March 2010 Approved by: Steering Group (14 December 2010) Updated:
More informationISMS AUDIT CHECKLIST
4.1 REQUIREMENT REFER TO BS ISO / IEC 27001 : 2005 Has the organisation developed a documented ISMS based on the PDCA model? Checked at Stage 1 for development and Stage 2/surveillance for implementation,
More informationBY TED BROWN, CBCP CBCV MBCI PRESIDENT & CEO KETCHCONSULTING BCI USA BOARD MEMBER CPM HALL OF FAME
Conducting a Business Continuity Plan Audit BY TED BROWN, CBCP CBCV MBCI PRESIDENT & CEO KETCHCONSULTING BCI USA BOARD MEMBER CPM HALL OF FAME KETCHConsulting: WHAT DO WE DO? Executive Justification of
More informationThe Path to Digital Transformation. A Roadmap for Business Success
The Path to Digital Transformation A Roadmap for Business Success Table of Contents Introduction 3 Moving Toward Transformation 4 Overcoming Transformation Barriers 7 How DXC Technology Can Help 8 Conclusion
More informationINTELLECTUAL PROPERTY MANAGEMENT ENTERPRISE ESCROW BEST PRACTICES REPORT
INTELLECTUAL PROPERTY MANAGEMENT ENTERPRISE ESCROW BEST PRACTICES REPORT What is Mission Critical to You? Before you acquire mission-critical technology from a third-party software vendor, take a few minutes
More informationSTRATEGIC PLAN ACCESSIBLE RELEVANT RIGHT NOW
STRATEGIC PLAN 2016 18 ACCESSIBLE RELEVANT RIGHT NOW 2 Ocean and Earth Training Specialists A message from the Managing Director Ocean and Earth Training Specialists 2016 18 Strategic Plan (Strategic Plan)
More informationRequest for Proposal Technology and Business Solutions Assessment
Request for Proposal Technology and Business Solutions Assessment RFP Release Date: 1/8/18 Proposals Due: 2/16/18 Contact Name: Caitlyn Pollihan Contact Phone: 217-355-9411 ext. 251 Contact Email: cpollihan@isa-arbor.com
More informationISO Business Continuity Management. Your implementation guide
ISO 22301 Business Continuity Management Your implementation guide Build a robust and resilient organization with ISO 22301 It s never been more important to protect your business from the unexpected.
More informationOracle Technical Cloud Consulting Services Descriptions. January 25, 2018
Oracle Technical Cloud Consulting Services Descriptions January 25, 2018 Services B83899 - Oracle Consulting Architecture Blueprint and Roadmap for Oracle Cloud... 2 B83896 - Oracle Consulting Rapid Start
More informationLatin America Mergers & Acquisitions Study Integration and divestiture best practices throughout the region
Latin America Mergers & Acquisitions Study Integration and divestiture best practices throughout the region The evolving M&A market of Latin America The last few years have been exciting times across Latin
More informationRisk Management Strategy. Version: V3.0
Risk Management Strategy Version: V3.0 Date: October 2016 Classification: DCC Public Document Control (Document Control Heading) Revision History (Document Control Subtitle) Revision Date Summary of Changes
More informationBUSINESS RESUMPTION PLAN. Development Guide
BUSINESS RESUMPTION PLAN Development Guide TABLE OF CONTENTS INTRODUCTION...4 PREVENTION...5 PLAN ORIENTATION...6 PLAN DEVELOPMENT CHECKLIST...6 MODULE 1...8 *Team Responsibilities... 8 *Critical Functions...
More informationBAA Level 4 Extended Diploma in Business Management 120 Credits
BAA Level 4 Extended Diploma in Business Management 120 Credits Level 4 Extended Diploma in Business This qualification will give learners a thorough grounding in Business and is ideal for learners who
More informationYale University Business Continuity Planning Quick Start Guide
Yale University Business Continuity Planning Quick Start Guide Introduction A Business Continuity Plan (BCP) (previously referred to as Continuity of Operations Plan or COOP) is a collection of resources,
More informationUniversity Information Technology Services. Business Impact Analysis For {System Name}
University Information Technology Services Business Impact Analysis For {System Name} Prepared by Victor Font UITS Business Continuity / Disaster Recovery Coordinator January 2013 1. Overview... 3 1.1
More informationIntroduction to Enterprise Computing. Computing Infrastructure Matters
Introduction to Enterprise Computing Computing Infrastructure Matters 1 Agenda Enterprise Overview Computing Technology Overview Enterprise Computing Technology Decisions Summary 2 Enterprise Overview
More informationLI & FUNG LIMITED ANNUAL REPORT 2016
52 Our approach to risk management We maintain a sound and effective system of risk management and internal controls to support us in achieving high standards of corporate governance. Our approach to risk
More informationMoving from BS to ISO The new international standard for business continuity management systems
Transition Guide Moving from BS 25999-2 to ISO 22301 The new international standard for business continuity management systems Extract from The Route Map to Business Continuity Management: Meeting the
More informationQuality Sign off for Internal Audit Engagement. Name of Audit
This is a sample of a quality sign off form for an internal audit engagement and is intended as a practical example. It should be reviewed and modified to suit the operations of your Internal Audit function.
More information2017 Oracle EBS Cloud Roadmap
2017 Oracle EBS Cloud Roadmap Velocity Technology Solutions This EBS Cloud Roadmap will: Suggest the right time to move EBS to the cloud Walk you through the steps and projected timeline. Provide reasons
More informationInsurance Analytics: Organizing Analytics capabilities to get value from Data Analytics solutions A Deloitte point of view on Data Analytics within
Insurance Analytics: Organizing Analytics capabilities to get value from Data Analytics solutions A Deloitte point of view on Data Analytics within the Dutch Insurance industry Insurance Analytics A Deloitte
More informationContract Risk and Compliance & Warranty Fraud. David Maberry Chief Risk Officer American Fidelity Assurance Company
Contract Risk and Compliance & Warranty Fraud David Maberry Chief Risk Officer American Fidelity Assurance Company Who am I and Why Am I Here? David Maberry is the Chief Risk Officer for American Fidelity
More informationDISASTER PREPAREDNESS Guide & Template
Go Beyond The Cloud STEP-BY-STEP DISASTER PREPAREDNESS Guide & Template WHITEPAPER BY XVAND TECHNOLOGY CORPORATION Xvand Technology Corporation 832.204.4909 questions@xvand.com www.isutility.com Disaster
More informationRole Profile. Additional: This post requires shift working and occasional Saturday working (one Saturday a month)
Providing Shelter, Enabling ndependence Role Profile Post Title: Support Worker Direct reporting to: Hostel Manager Salary: 24k pa Contract: Permanent, full-time Hours: 35 hours pw, excluding lunch breaks
More informationOptimizing SWIFT ebam for Your Corporation
Optimizing SWIFT ebam for Your Corporation May 30, 2013 Dan Gill Product Line Director, Corporate Solutions Weiland Financial / Open Solutions Christian Vega Sales Director, SWIFT Solutions Fundtech Corporation
More informationUniversity of Sunderland Role Profile Part 1
University of Sunderland Role Profile Part 1 Business Support Administrator Job Title: Business Support Administrator Reference No: NEW379 Reports to: Commercial Facilities Manager Grade: C Working Hours:
More informationBusiness Resilience: Equipping the FM for Success
Business Resilience: Equipping the FM for Success CEUs & CFM Maintenance Points You are eligible to receive Continuing Education Units and Certified Facility Manager maintenance points for attending sessions
More informationUS Business Continuity Safeguarding Your Business from a Disaster
US Business Continuity Safeguarding Your Business from a Disaster Juanita Hardin BMO Harris Bank Head TPS Risk and Compliance William Simmons BMO Harris Bank Vice President Business Continuity Management
More informationDiscovering the TAC 202 Information Security Standard
This PathMaker Group white paper describes the subject matter within the standard and purpose of each area of measurement. Ryker Exum Introduction The TAC 202 is a freely available security standards framework
More informationREGULATORY HOT TOPIC Third Party IT Vendor Management
REGULATORY HOT TOPIC Third Party IT Vendor Management 1 Todays Outsourced Technology Services Core Processing Internet Banking Mobile Banking Managed Security Services Managed Data Center Services And
More informationTHE CLOUD, RISKS AND INTERNAL CONTROLS. Presented By William Blend, CPA, CFE
THE CLOUD, RISKS AND INTERNAL CONTROLS Presented By William Blend, CPA, CFE AGENDA Cloud Basics Risks Related Cloud Use GOA on Service Level Agreements COSO ERM Internal Control Model 2 CLOUD BASICS Evolution
More informationManaged IT Services. Eliminating technology pains in small businesses
Eliminating technology pains in small businesses Having a complete IT department is not a viable solution for most small businesses, and very few small companies can afford to deploy even one permanent
More informationManaged IT Services. Eliminating technology pains in small businesses
Eliminating technology pains in small businesses Having a complete IT department is not a viable solution for most small businesses, and very few small companies can afford to deploy even one permanent
More informationDrive more value through data source and use case optimization
Drive more value through data source and use case optimization BEST PRACTICES FOR SHARING DATA ACROSS THE ENTEPRRISE David Caradonna Director, Global Business Value Consulting Date Washington, DC Forward-Looking
More informationThe Sector Skills Council for the Financial Services Industry. National Occupational Standards. Risk Management for the Financial Sector
The Sector Skills Council for the Financial Services Industry National Occupational Standards Risk Management for the Financial Sector Final version approved April 2009 IMPORTANT NOTES These National Occupational
More information(ISC)2 CISSP EXAM BUNDLE
(ISC)2 CISSP EXAM BUNDLE Number: CISSP Passing Score: 800 Time Limit: 120 min File Version: 42.2 http://www.gratisexam.com/ (ISC)2 CISSP EXAM BUNDLE Exam Name: (ISC)2 Certified Information Systems Security
More informationOperational Resilience Measure and Report
Operational Resilience Measure and Report 26 Sept 2017 Lewis McKenzie Andrew Charlton Evolution of Resilience Regulation Regulatory Challenge Board accountability for critical infrastructure. Requirement
More informationTHE COMPLETE GUIDE TO ISO14001
THE COMPLETE GUIDE TO ISO14001 1. Introduction... 3 Plan Do Check Act... 5 2. Requirements... 7 Environmental Policy... 7 Environmental Aspects... 7 Legal and Other Requirements... 8 Objectives & Targets...
More information7 TIPS TO SUPER-CHARGE CORNERSTONE
7 TIPS TO SUPER-CHARGE CORNERSTONE You have great talent. You have a great platform. How can you go even further? GOALS DEVELOPMENT PLANNING TRAINING CREATIVITY VISION LEARNING www.tribridge.com/hcm hcm@tribridge.com
More informationVENDOR MANAGEMENT 101
VENDOR MANAGEMENT 101 Enterprise Risk Management Vendor Management Business Continuity IT GRC Internal Audit Regulatory Compliance Manager Introduction to Vendor Management About Your Presenter Andrea
More informationBest Practices for Implementing a Treasury Management System
Best Practices for Implementing a Treasury Management System Jeffery Hodges Treasury Manager, Sysco Corporation Thomas Gavaghan Manager NORAM presales - Kyriba Treasury Management Systems Landscape Today
More informationISO 9001:2015 READINESS CHECKLIST YOU RE CLOSER THAN YOU THINK EXECUTIVE SUMMARY CLAUSE 4 - CONTEXT OF THE ORGANISATION CLAUSE 5 - LEADERSHIP
EXECUTIVE SUMMARY CLAUSE 4 - CONTEXT OF THE ORGANISATION CLAUSE 5 - LEADERSHIP CLAUSE 6 - PLANNING CLAUSE 7 - RESOURCES CLAUSE 8 - OPERATIONS CLAUSE 9 - PERFORMANCE EVALUATION CLAUSE 10 - IMPROVEMENTS
More informationJennie Clinton, Pearce Global Partners May 10 th, 2012
Jennie Clinton, Pearce Global Partners May 10 th, 2012 Workshop Overview Workshop will focus on three area of business resiliency: Business Continuity Plans and Crisis Response Look at how these plans
More informationFinancial Manager(FM) Position Description Effective: Monday, 18 December 2017
Position Title: Financial Manager(FM) Reports to: Chief Executive Officer Authorised by and date: CEO, 18 December 2017 Classification level: Managerial (not governed by any Award) Roles reporting to this
More informationManaged IT Services. Eliminating technology pains for small businesses
Eliminating technology pains for small businesses Having a complete IT department is not a viable solution for most small businesses, and very few small companies can afford to deploy even one permanent
More informationPosition Description - SUPPORT COORDINATOR (Level 5) Leisure Networks Association Inc. - Connecting people to their communities
Position Description - SUPPORT COORDINATOR (Level 5) Leisure Networks Association Inc. - Connecting people to their communities THE POSITION Position Title: Support Coordinator (Level 5) Reports to: Team
More information10 Reasons LinuxONE is the Best Choice for Linux Workloads
10 Reasons LinuxONE is the Best Choice for Linux Workloads Wherever an organization is in the world today, it relies on IT in its quest to drive revenues, improve profit margins, and service customers.
More informationStatement on Risk Management and Internal Control
INTRODUCTION The Board affirms its overall responsibility for the Group s system of internal control and risk management and for reviewing the adequacy and effectiveness of the system. The Board is pleased
More informationA Risk Management Process for Information Security and Business Continuity
A Risk Management Process for Information Security and Business Continuity João Carlos Gonçalves Fialho Instituto Superior Técnico - Taguspark joaogfialho@gmail.com ABSTRACT It was from the DNS.PT internship
More informationcertificate in management practice financial skills
NQF Level 4 certificate in management practice financial skills Building a cost conscious culture amongst non-financial managers about the programme The training need The need to embed cost effectiveness
More informationIntroduction. Case for SAP Cybersecurity Framework
Agenda 3 Introduction Case for SAP Cybersecurity Framework Current state 5 ENTERPRISE SECURITY VULNERABILITY MANAGEMENT CISO NO EFFECTIVE OVERSIGHT SAP SECURITY SEGREGATION OF DUTIES NO VISIBILITY SLIPPED
More informationInternal Quality Assurance and Controls
Internal Quality Assurance and Controls Document History Version date Reason for revision Sign off number 1.0 20 June 2017 First draft Policy Statement The EUIAS is committed to ensuring a standardised
More informationManagement Update: A Business Continuity Management Program Is Critical
IGG-07162003-03 R. Witty Article 16 July 2003 Management Update: A Business Continuity Management Program Is Critical Enterprises that do not have a business continuity management (BCM) program are on
More informationComparison between FASB Amendments and IASB tentative decisions
IASB Agenda ref 13A STAFF PAPER IASB Meeting Project Paper topic Definition of a business October 2017 Comparison between FASB Amendments and IASB tentative decisions CONTACT(S) Leonardo Piombino lpiombino@fondazioneoic.it
More informationEFI Expands Inkjet TAM Acquires Reggiani and Matan. July 1, 2015
EFI Expands Inkjet TAM Acquires Reggiani and Matan July 1, 2015 Forward-Looking Statements Disclaimer Safe Harbor for Forward Looking Statements Certain statements in this presentation are forward-looking
More informationModeration and Validation of Assessment TAFE Procedure. Moderation and Validation of Assessment
PROCEDURE Operational Responsibility: Related Policy: Moderation Validation of Assessment TAFE Procedure Academic Registrar Moderation Validation of Assessment PROCEDURE STATEMENT INTENT SCOPE To ensure
More informationCHAPTER 2 Analyzing the Business Case (Phase 1: System Planning)
CHAPTER 2 Analyzing the Business Case (Phase 1: System Planning) Jakrapop Maisen STRATEGIC PLANNING Strategic Planning Overview During strategic Planning, top managers ask a series of questions that called
More informationSTREAM Integrated Risk Manager. ISO Application. How STREAM supports compliance with ISO 27001
STREAM Integrated Risk Manager ISO 27001 Application How STREAM supports compliance with ISO 27001 Plan Do Check - Act STREAM provides support to all 4 stages of the international management system model
More informationhttps://www.e-janco.com
E-mail: support@e-janco.com https://www.e-janco.com Summary Table of Contents IT INFRASTRUCTURE, STRATEGY, AND CHARTER SUMMARY...1 Benefits of IT Infrastructure Management...1 Base Assumptions and Objectives...2
More informationBUSINESS CONTINUITY MANAGEMENT POLICY
BUSINESS CONTINUITY MANAGEMENT POLICY Date first approved: Date of effect: Date last amended: Date of Next Review: 14 July 2009 On Approval 14 March 2017 14 March 2020 First Approved by: Custodian title
More informationIMPLEMENTING THE SENIOR MANAGERS AND CERTIFICATION REGIME 1 IMPLEMENTING THE SENIOR MANAGERS AND CERTIFICATION REGIME
IMPLEMENTING THE SENIOR MANAGERS AND CERTIFICATION REGIME 1 IMPLEMENTING THE SENIOR MANAGERS AND CERTIFICATION REGIME 2 IMPLEMENTING THE SENIOR MANAGERS AND CERTIFICATION REGIME THE SENIOR MANAGERS AND
More informationTAEASS403 Participate in assessment validation. Learning Guide
TAEASS403 Participate in assessment validation Written by Sandy Welton www.trainingresourcesrto.com.au Table of Contents TAEASS403 Participate in assessment validation... 1 Elements of competency... 1
More informationQuick Start Guide to Business Agility Creating an Environment for Successful Business Transformations for Solution Providers
Quick Start Guide to Business Agility Creating an Environment for Successful Business Transformations for Solution Providers Moheb Moses Director, CompTIA ANZ Channel Community 22 Oct 2015 Director, Channel
More information