* Conduct a risk assessment
- Identify and prioritize the system and other resources required to support critical business processes in the event of a disruption.
- Identify and prioritize threats and vulnerabilities
* Prepare BIA of the effect of the loss of critical business process and their supporting components.
* Choose appropriate controls and measures for recovering IT components to support the critical business processes.
* Develop the detailed plan for recovering IS facilities (DRP).
* Develop a detailed plan for critical business functions to continue to operate at an acceptable level (BCP).
* Test the plans
* Maintain the plans as the business changes and system develop.
沒有留言:
張貼留言