What & Why
Organizations in today's digital world are relying more and more on technology, automation and information. Organizations now span the globe and now have customers to support 24 X 7 X 365. With such highly critical services being offered, any breakdown in the infrastructure can cause disruption of the services, which can have catastrophic effects on the organization's ability to supports its customers. The costs of interrupted access to data or the loss or compromise of customer data can have serious impacts on the organization's functional abilities and subsequently their reputation. At the same time, an organization's ability to remain operational and extend services during the disruption phase will set them apart and help them be seen as above the rest.
Another dominant factor in today's business world is the requirement is the ever increasing need to comply with legal and government regulations. Organizations risk the possibility of facing severe penalties for not being able to provide services within the stipulated timelines. For which having well implemented continuity & recovery plans become critical.
To appreciate the severity of an outage, we must understand that no organization is immune to disruptions. These can come in anytime in the form of intrusions in the network by hackers, physical attacks, bio terrorism, terrorist attacks, accidents, equipment failures or natural disasters. What allows one organization to survive such setbacks with their reputation intact, while others may not, is their ability to mitigate the obvious disruptions by having well formulated continuity plan to handle any type of events.
How?
Based on the established standards and frameworks like the ISO 22301:2012, NIST publications intiGrow will help organizations in establishing a Business Continuity Management process in order to mitigate the technology and information continuity risks identified as part of Risk Management. In order to maintain availability of IT and information we will first understand:
- which processes are critical;
- how quickly they must to be restored;
- what are the IT and information required in order to keep these critical processes running.
Using this information, intiGrow consultants will determine the actions that must be performed to ensure that the IT and information requirements of the critical processes can be met, despite a disruptive event. This includes ensuring that the IT staff is available within the required timeframes and the identification of an alternative site(s) from which to work should it become necessary. This information is detailed within the Business Continuity Plan (BCP).
The six step approach intiGrow has mastered is mentioned below
- Define BCM framework
- Conduct Business Impact Analysis
- Define the Recovery strategy / approach
- Document the BCP
- Test the BCP
- Sustain BCM program
