TEL382 Greene Chapter 11. 10/27/09 2 Outline What is a Disaster? Disaster Strikes Without Warning Understanding Roles and Responsibilities Preparing For.

Slides:



Advertisements
Similar presentations
Museum Presentation Intermuseum Conservation Association.
Advertisements

Detail actions necessary to implement the interim housing mission in the post-disaster environment Identify command and control structures at all levels.
Business Continuity Training & Awareness by Sulia Toutai (ANZ)
Hospital Emergency Management
Planning for the Future Disaster Recovery Plan / Business Continuity Plan Jim Zukowski, Ed.D. Texas State Board of Dental Examiners 2006 Annual ConferenceAlexandria,
Disaster Preparedness I Lessons Learned Don Hall Thomson Prometric 2006 Annual ConferenceAlexandria, Virginia Council on Licensure, Enforcement and Regulation.
Project Management Shuffle Directions: take the definitions from the following cards and write a song using the tune from “Cupid Shuffle”
BUSINESS CONTINUITY MANAGEMENT THROUGH STANDARDS AND BEST PRACTICES Jasmina Trajkovski, CISA, CISM.
CIOassist Technologies Your CIO on Demand… Business Continuity Planning Our Offering CIOassist Technologies (
Systems Availability and Business Continuity Chapter Four Prepared by: Raval, Fichadia Raval Fichadia John Wiley & Sons, Inc
Copyright © 2012 Pearson Education, Inc. Publishing as Prentice Hall 3.1.
Introduction to Business Continuity Planning An Introduction to the Business Continuity Planning Process Including Developing your Process and the Plans.
@TxSchoolSafety Continuity of Operations Planning Workshop Devolution & Reconstitution.
1 Continuity Planning for transportation agencies.
Business Continuity Planning (BCP) & Disaster Recovery Planning (DRP)
Business Continuity Planning and Disaster Recovery Planning
Unit 8: Tests, Training, and Exercises Unit Introduction and Overview Unit objectives:  Define and explain the terms tests, training, and exercises. 
TEL382 Wallace Chapter 2. 11/3/09 2 Outline Introduction Building a Risk Analysis Scope of Risk The Five Layers of Risk Layer 1: External Risks Layer.
Chapter 11 Business Continuity Management
Guide to Disaster Recovery
Business Continuity and You! The Ohio State University Business & Finance Enterprise Continuity Program Quarterly Update October 2008Business and Finance.
Crisis Management Planning Employee Health Safety and Security Expertise Panel · Presenter Name · 2008.
1 BUSINESS CONTINUITY AND DISASTER RECOVERY PLANNING Reducing your Risk Profile MIDWEST DATA RECOVERY INC.
EASTERN MICHIGAN UNIVERSITY Continuity of Operations Planning (COOP)
INFORMATION SECURITY GOVERNANCE (ISG) Relates to the security of information systems Is an element of corporate governance.
Copyright 2005 Welcome to The Great Lakes TL 9000 SIG TL 9000 Requirements Release 3.0 to Release 4.0 Differences Bob Clancy Vice President, BIZPHYX,
Module 3 Develop the Plan Planning for Emergencies – For Small Business –
Business Crisis and Continuity Management (BCCM) Class Session
ISA 562 Internet Security Theory & Practice
© 2013 Cengage Learning. All Rights Reserved. 1 Part Four: Implementing Business Ethics in a Global Economy Chapter 9: Managing and Controlling Ethics.
Rich Archer Partner, Risk Advisory Services KPMG LLP Auditing Business Continuity Plans.
ADM 677 Crisis Management in Educational Settings Karen McCuiston Kentucky Center For School Safety.
Business Continuity and Disaster Recovery Planning.
ENTREPRENEURSHIP Chapter # 07 The Business Plan: Creating and Starting the Venture.
© 2008 Prentice Hall2-1 Introduction to Project Management Chapter 2 The Project Management Life Cycle Information Systems Project Management: A Process.
Developing Plans and Procedures
Disaster Recovery and Business Continuity Planning.
Business Continuity Program Orientation (insert presentation date) (This presentation is a template that requires adjustments to meet your needs)
Business Continuity & Disaster Recovery Larry Corrigan-Tractor Supply Co Sarah Gunterman-Gunterman Consulting.
SMS Planning.  Safety management addresses all of the operational activities of the entire organization.  The four (4) components of an SMS are: 1)
INFORMATION SECURITY MANAGEMENT L ECTURE 3: P LANNING FOR C ONTINGENCIES You got to be careful if you don’t know where you’re going, because you might.
NFPA 1600 Disaster/Emergency Management and Business Continuity Programs.
Key Terms Business Continuity Plan (BCP) – A comprehensive written plan to maintain or resume business in the event of a disruption Critical Process –
Disaster Planning Workshop Hosted By: Pleasantview Fire Protection District.
SecSDLC Chapter 2.
What Is an Incident? An incident is an occurrence, caused by either human or natural phenomena, that requires response actions to prevent or minimize.
Chapter 3: Business Continuity Planning. Planning for Business Continuity Assess risks to business processes Minimize impact from disruptions Maintain.
Tom Lenart & John Field CT DEMHS Region 2.  Department of Emergency Services and Public Protection (DESPP)  Commission on Fire Prevention and Control.
Business Continuity Disaster Planning
Purchasing Cards. What is a Purchasing Card? It is a type of commercial credit card, used by organizations for payment of goods and services. This tool.
CBIZ RISK & ADVISORY SERVICES BUSINESS CONTINUITY PLANNING Developing a Readiness Strategy that Mitigates Risk and is Actionable and Easy to Implement.
AUDITING BUSINESS CONTINUITY PROGRAMS AND PLANS What to Look For Presented by: Tommye White, CBCP, DRP Chuck Walts, CBCP, CRP.
Business Continuity Planning 101
Pandemic Flu Tabletop Exercise (TTX) [insert date of exercise] Public Health – Seattle & King County [insert your agency logo]
THINK DIFFERENT. THINK SUCCESS.
Utilizing Your Business Continuity Plan.
CompTIA Security+ Study Guide (SY0-401)
MANAGEMENT of INFORMATION SECURITY, Fifth Edition
Making Incident Management Work for Your Organization
Emergency Operations Plan
Business Continuity / Recovery
Systems Implementation,
Business Continuity Plan Training
Chapter 5 :The Business Plan (Creating and Starting The) Venture
Incident command use for pipeline emergencies
BUSINESS CONTINUITY PLAN
Business Continuity Program Overview
Unit 6- IS 230 Fundamentals of Emergency Management
BUSINESS CONTINUITY PROGRAM
BUSINESS CONTINUITY PLAN
Presentation transcript:

TEL382 Greene Chapter 11

10/27/09 2 Outline What is a Disaster? Disaster Strikes Without Warning Understanding Roles and Responsibilities Preparing For Disaster Responding to a Disaster Planning For Contingencies Recovering From Disaster Testing and Maintaining the Plan

10/27/09 3 What is a Disaster? A disruption of normal business functions where the expected time for returning to normalcy would impact the organization’s ability to maintain operations, including customer commitments and regulatory compliance Steps: –Determine Threats, Perform Business Impact Analysis (BIA), Determine Safeguards BIA provides direction and guidance to those who plan the response, recovery and continuity efforts

10/27/09 4 Disaster Strikes Without Warning Must have a written plan! Business Continuity Plan (BCP) should have: –Disaster Preparation : to be done in anticipation –Disaster Response: to be done immediately following incident –Business Contingency: alternate business processes prior to full recovery –Business Recovery: recovering information systems to their original state

10/27/09 5 Understanding Roles and Responsibilities Senior Management Leadership BCP Team Operational Management defines needs of department IT Department HR Department Internal Audit Department BCP Team Responsibilities: –Assessing damage, declaring a disaster, managing response, providing leadership, provide post-disaster assessment, plan impact analysis when changes made, testing plan, reviewing plan with management

10/27/09 6 Preparing For Disaster Predefined key elements: –Establish organizational structure to respond: chain of command and succession –Designate Emergency Command Center: Location where BCP Team meets and directs operations –Prepare Notification Procedures: Call trees, cell phones –Design Alternate Operations Sites: Delivery (product to customer) and Operational (HR, accounting, security, etc.) functions –Invest in redundant infrastructure: Hot Sites, Warm Sites, Cold Sites, Mobile Sites –Develop and implement procedures to support response, recovery and continuity activities

10/27/09 7 Responding to a Disaster Four Stages of Disaster Notification –Detection: Whoever first discovers it –Notification: Notify BCP Team –Declaration: BCP Team evaluates the situation and activates the plan –Activation: BCP Team Leader (or alternate) Non-operational Business Concerns to be addressed before disaster: –Public Safety: Who, how, when, etc –Employee Relations: Show up to work, where, when, how, etc. –Media Relations: Single media focal point –Customer Relations: Who, how, what, etc. –Crime:

10/27/09 8 Planning For Contingencies Contingency Operations Established at Main Site or Alternate Location Develop Business Contingency Operating Procedures (BCOP)

10/27/09 9 Recovering From Disaster Break Down into categories: –Mainframe, Network, Communications Detailed Procedures Need to be Developed and Documented Before Needed –What needs to be done, where it needs to be done, how it needs to be done Recovery Manuals on specific systems and/or devices

10/27/09 10 Testing and Maintaining the Plan Plans and Procedures are only theoretical until tested Must be accurate, relevant and operable under adverse conditions 5 Standard Testing Techniques: –Preliminary Review, Structured Walkthrough, Tabletop Simulation, Parallel Testing, Full-Scale Testing Must revisit plan frequently to take into account changes Should have SLAs with Major Vendors Some Regulated Industries MUST Audit Plan

TEL382 Wallace Chapter 1

10/27/09 12 Outline Introduction Initiating the Project Contingency Planning Coordinator Scope of the Project Adequate Funding Selecting a Team Planning the Project Executing and Controlling Closing the Project

10/27/09 13 Introduction Building a BCP is like any other business project In developing a BCP, the early stages must be done sequentially. After a certain point, then many tasks can be done in parallel Typical Steps: –Management Decision –Contingency Plan Coordinator (CPC) is selected –Sponsor and CPC define effort Scope –CPC selects Team –CPC and Team develop Project Plan –Project Plan is Executed –Reports Produced and CPC closes Project

10/27/09 14 Initiating the Project Sponsor from Senior Management Selection of CPC

10/27/09 15 Contingency Planning Coordinator Public announcement May begin by using an Outside Consultant Tasking begins as plan developer, evolves to plan implementer, then plan maintainer

10/27/09 16 Scope of the Project Defines boundaries of what will be accomplished A guideline: –Any event that would cost >5% of quarterly revenues merits its own plan Build slowly and systematically Written Scope Statement Focus on Critical Business Functions and the Processes that Support Them Most Plans can be developed within 6 Months

10/27/09 17 Adequate Funding Indicates Management Commitment Project Budget Items: –BCP Training for CPC and some Team Members –Consultant –Overtime Expenses –Temporary Administrative Help –Food/Beverages –Bonuses/Trinkets, etc.

10/27/09 18 Selecting a Team Identify Stakeholders Core Team (CPC, Assistant, Administrative Assistant) Other Team Members: –Building Maintenance or Facilities Manager –Facility Safety and Security –Labor Union Representative –HR –Line Management –Community Relations –Public Information Officer –Sales and Marketing –Finance and Purchasing –Legal Use Standard Tools Initial Training Knowledge of Department Processes Team Meetings

10/27/09 19 Planning the Project Identify Activities –Write Paragraph on Each Task, Document Assumptions and Constraints Estimate How Long Each Will Take Decide Who Should Do What Sequence the Tasks Into a Logical Work Flow –Assign Start Dates Look for Problems in Plan –Resource Overobligation, Availability, etc.

10/27/09 20 Planning the Project Common Problems –CPC lacks experience –Lack of Management Support –Inadequate Funding –Too Many Locations –Too Many Departments –Business Interruptions –Not Enough Time

10/27/09 21 Executing and Controlling Scope Verification Communications Plan –Mandatory, Informational, Marketing Controlling –Change –Scope –Cost –Quality –Performance Reporting –Risk Response Plan Testing

10/27/09 22 Closing the Project Turn Files over to Administrator Report Results to Management Identify Known Exposures Thank the Team

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com Inc. All rights reserved.