Dr. Gerry Firmansyah CID 610 - Business Continuity and Disaster Recovery Planning for IT (W-XI)

Slides:

Advertisements

Similar presentations

Effective Contract Management Planning

Advertisements

MIGRATION MIGR-09. How to Run Your Next Implementation... Don't Let It Run You! Patricia Johnson Senior Systems Consultant Strategic Systems Group, Inc.

[Organisation’s Title] Environmental Management System

Business Continuity Training & Awareness by Sulia Toutai (ANZ)

Environmental Management System (EMS)

TEL382 Greene Chapter /27/09 2 Outline What is a Disaster? Disaster Strikes Without Warning Understanding Roles and Responsibilities Preparing For.

Pertemuan Matakuliah: A0214/Audit Sistem Informasi Tahun: 2007.

© 2008 Prentice Hall11-1 Introduction to Project Management Chapter 11 Managing Project Execution Information Systems Project Management: A Process and.

Project Execution.

Network security policy: best practices

EASTERN MICHIGAN UNIVERSITY Continuity of Operations Planning (COOP)

COMPLYING WITH HIPAA BUSINESS ASSOCIATE REQUIREMENTS Quick, Cost Effective Solutions for HIPAA Compliance: Business Associate Agreements.

Degree and Graduation Seminar Project Management Processes

Project Management Process Overview

Staff Structure Support HCCA Special Interest Group New Regulations: A Strategy for Implementation Sharon Schmid Vice President, Compliance and.

PMP® Exam Preparation Course

9 Closing the Project Teaching Strategies

Basics of OHSAS Occupational Health & Safety Management System

SMS Operation.  Internal safety (SMS) audits are used to ensure that the structure of an SMS is sound.  It is also a formal process to ensure continuous.

Organize to improve Data Quality Data Quality?. © 2012 GS1 To fully exploit and utilize the data available, a strategic approach to data governance at.

ISA 562 Internet Security Theory & Practice

Lecture #9 Project Quality Management Quality Processes- Quality Assurance and Quality Control Ghazala Amin.

David N. Wozei Systems Administrator, IT Auditor.

Project Management Methodology Project Closing. Project closing stage Must be performed for all projects, successfully completed or shut off by management.

Centro de Estudos e Sistemas Avançados do Recife PMBOK - Chapter 4 Project Integration Management.

Module N° 8 – SSP implementation plan. SSP – A structured approach Module 2 Basic safety management concepts Module 2 Basic safety management concepts.

CERTIFICATION In the Electronics Recycling Industry © 2007 IAER Web Site - -

Business Continuity and Disaster Recovery Planning.

KAPLAN SCHOOL OF INFORMATION SYSTEMS AND TECHNOLOGY Unit 4 IT 484 Networking Security Course Name – IT Networking Security 1203C Term Instructor.

Lecture 11 Managing Project Execution. Project Execution The phase of a project in which work towards direct achievement of the project’s objectives and.

Lesson 9-Information Security Best Practices. Overview Understanding administrative security. Security project plans. Understanding technical security.

Paul Hardiman and Rob Brown SMMT IF Planning and organising an audit.

Business Continuity & Disaster Recovery Larry Corrigan-Tractor Supply Co Sarah Gunterman-Gunterman Consulting.

IT 499 Bachelor Capstone Week 4. Adgenda Administrative Review UNIT Four UNIT Five Project UNIT Six Preview Project Status Summary.

ISO DOCUMENTATION. ISO Environmental Management Systems2 Lesson Learning Goals At the end of this lesson you should be able to:  Name.

Unit 3: Identifying and Safeguarding Vital Records Unit Introduction and Overview Unit objective:  Describe the elements of an effective vital records.

1 Records Management Organization The Committee provides guidance on operating the company’s records management program.

Unit 4: Operational Phases and Implementation. Unit 4 Objectives  Explain the four phases of continuity and relate their application to the continuity.

ISO DOCUMENT CONTROL. ISO Environmental Management Systems2 Lesson Learning Goals At the end of this lesson you should be able to: 

Erman Taşkın. Information security aspects of business continuity management Objective: To counteract interruptions to business activities and to protect.

Chapter 3: Business Continuity Planning. Planning for Business Continuity Assess risks to business processes Minimize impact from disruptions Maintain.

Project management Topic 8 Configuration Management.

0 Due Diligence Monitoring and Auditing of Third Party Vendors October 28, 2008 Pharmaceutical Regulatory and Compliance Congress and Best Practices Forum.

Pertemuan 14 Matakuliah: A0214/Audit Sistem Informasi Tahun: 2007.

BSBPMG501A Manage Project Integrative Processes Manage Project Integrative Processes Project Integration Processes – Part 2 Diploma of Project Management.

CBIZ RISK & ADVISORY SERVICES BUSINESS CONTINUITY PLANNING Developing a Readiness Strategy that Mitigates Risk and is Actionable and Easy to Implement.

A Lightweight Business Continuity & Disaster Recovery Plan Motahareh Moravej Issuers’ Affairs Director at CSDI PHD. Student of Computer Engineering, UT.

Rarotonga 29 th January, What is an EMP? An EMP sets out how a business will undertake its operation to manage pollution risks. EMPs deal with pollution.

Project Management Methodology Project Closing. Project closing stage Must be performed for all projects, successfully completed or shut off by management.

AUDITING BUSINESS CONTINUITY PROGRAMS AND PLANS What to Look For Presented by: Tommye White, CBCP, DRP Chuck Walts, CBCP, CRP.

Vanguard For Army Transformation PM BCT 1 Predicting What the Future Holds Risk Management PM Brigade Combat Team.

Response to an Emergency Training for 211 Staff in Ontario Updated September

Business Continuity Planning 101

Dr. Gerry Firmansyah CID Business Continuity and Disaster Recovery Planning for IT (W-VIII)

Dr. Gerry Firmansyah CID Business Continuity and Disaster Recovery Planning for IT (W-I)

Dr. Gerry Firmansyah CID Business Continuity and Disaster Recovery Planning for IT (W-IX)

Improving Compliance with ISAs Presenters: Al Johnson & Pat Hayle.

CMGT 410 aid Education Begins/cmgt410aid.com

Software Project Configuration Management

Cybersecurity Special Public Meeting/Commission Workshop for Natural Gas Utilities September 27, 2018.

Developing and testing the Plan

The Survival Plan.

{Project Name} Organizational Chart, Roles and Responsibilities

Technology Maintenance

Equipment Maintenance Office Supplies Replenishment

CR-GR-HSE-302 Management of change

Management of Change GROUP HSE RULE (CR-GR-HSE-302)

Contingency Planning for Accidental Surface Water Pollution GROUP HSE RULE (CR-GR-HSE-705) EXECUTIVE SUMMARY This rule sets specific requirements to be.

Presentation transcript:

Dr. Gerry Firmansyah CID Business Continuity and Disaster Recovery Planning for IT (W-XI)

BC/DR Plan Maintenance BC/DR change management Strategies for managing change BC/DR plan audit Plan maintenance activities Project close out

BC/DR change management Change Management Process

Strategies for managing change Two key strategies for managing change are having a process for monitoring and a process for evaluating change requests. ❖ Monitor Change ❖ Evaluate and Incorporate Change

BC/DR plan audit The plan audit is a process in which you review the BC/DR plan against specific requirements. Audit plan should be created at minimum: ■ Audit scope, timeline, requirements, and constraints ■ Review of corporate risks and risk management strategies including BC/DR ■ Review of business impact ■ Review of BC/DR plan development activities ■ Review of BC/DR plan test plans and activities ■ Review of BC/DR plan training plans and activities ■ Review of BC/DR change management and plan maintenance processes

Plan maintenance activities 1. If the plan is revised, the BC/DR team members (or those who should have the latest copy of the plan) should be notified in a timely manner. 2. The plan should use a revision numbering system so team members know whether they have the latest version of the plan. 3. Review, update, and revise key contact information regularly.This includes staff, vendors, contractors, key customers, alternate sites and facilities, among others. 4. Create a BC/DR plan distribution list that is limited to authorized personnel but that includes all relevant parties.This distribution list should include off-site and remote facilities that may be used in the event of BC/DR plan activation. 5. Be sure there are up-to-date copies of the BC/DR plan off-site in the event the building is inaccessible.

Plan maintenance activities (cont) 6. Be sure there are up-to-date paper copies of the BC/DR plan on-site in the event IT systems go down. 7. Implement a process whereby all old versions of the plan are destroyed or archived and new versions replace them.This helps avoid a scenario where team members are working from different versions of the plan. 8. Always check soft copy and remote storage copies of your plan when changes are made to the plan. If you store copies off-site or at your alternate work site, these versions should be updated any time the plan is modified. 9. Whenever significant changes are requested or implemented, test the plan.This will ensure there are no new areas of concern and will help train staff on the changes. 10. Integrate BC/DR considerations into operational processes to reduce plan maintenance efforts in the future. 11. Assign responsibility for managing BC/DR change notification and requests to someone on the BC/DR team.The project management adage that a task without an owner won’t get done is especially true here. 12. Document plan maintenance procedures and follow these procedures to avoid introducing additional risk into the project. 13. Incorporate training into the change process so changes to people, process, technology that are incorporated into the BC/DR plan also trigger changes to training plans. 14. Be sure to include BC/DR plan testing, training, auditing, and maintenance activities in your IT or corporate budget for future activities related to BC/DR.

Project close out Several project close out activities. 1. Be sure all documentation is complete and finalized. 2. Be sure the BC/DR plan is distributed to appropriate personnel. 3. Announce plan completion to project sponsor and other project stakeholders. 4. Announce plan completion to company to increase awareness and celebrate success. 5. Announce training or testing plans, if appropriate. 6. Hold a project review session to discuss lessons learned and incorporate into process. This should not be held at the same time as a project close out or celebration. This should be a working meeting to capture best practices and lessons learned. 7. Hold project close out meeting to celebrate completion and recognize individual efforts, as appropriate. 8. Complete any staff reviews related to project work. 9. Submit summary or close out report to project sponsor, executive team, or other stakeholders, as appropriate. 10. Update legal or compliance documentation to reflect BC/DR readiness, as appropriate. 11. Set date for next BC/DR audit, review, testing, or training.