Business Continuity & Disaster Recovery

In the industry, many service providers:

• Equate BCP with DRP (Disaster Recovery Planning)
• Create a BCP to sell DRP hardware and services
• Fail to understand both of the strategic and tactical dimensions of business continuity planning

LuneSys’ approach is centered on the following principles:

• The BCP should leverage and ultimately enable the organization’s business strategy
• May require DRP as the manifestation of the risk mitigation action, but the BCP is truly business centric (not technology or catastrophe centric)
• Should be created by an objective party with no potential financial gain as a result of selling DRP hardware or software.
• Holistically consider key scenarios that could cause interruption in critical business functions, processes and tasks
• Evaluating risks (probability, impact) and the corporate risk tolerance against mitigation costs and remediation strategies (it is not just about insurance coverage!)

Course Details

The followings are covered in the training course offered by LuneSys:

Risk Assessment

• Identify the business risks meaningful to your business with expected probabilities and outcomes
• Provide our subject matter expertise relative to potential risk areas (that have not been identified)
• Present methods for reducing or managing those risks

Prioritization and Strategy Selection

• Develop strategy for addressing each of the prioritized BCP areas
• Work with customers and external regulatory groups to understand and document their requirements
• Discuss options, pros, cons and costs

Gain Consensus/Backup Plan Review

• Review backup mechanisms for each information system and service
• Review staff backup and cross-training in each major business function
• Review supplier alternatives for each major material and service
• Present options for improving

Testing and Maintenance

• Coordinate with internal business subject matter experts to ensure satisfactory test plans are developed
• Document all test scripts
• Coordinate recovery tests and document results
• Review results, present findings, and recommend improvements
• Develop plan for reviewing BCP on a regular basis
• Ensure that BCP is incorporated into future business processes, development, and purchases

At the end of the courses delegates will:

• Be aware of the key features and content of Business Continuity Planning
• Understand the differences between BCP code of practice and DRP, and how to use them to best effect
• Understand how to use the standards to support BCP within their own organization
• Be able to develop a Business Continuity Management system based upon best practices, principles and BS25999
• Understand the benefits and be aware of some of the pitfalls in Business Continuity Management
  Be able to weigh up the likely returns from investment in a range of different planning choices

Pre-requisites

Attendees should have a good understanding of the key functions and operations of their own organization and come prepared to discuss in broad terms some of the risk and performance issues which may affect their business.