involve the identification, selection, implementation, testing and updating of processes and specific actions necessary to prudently protect criticial busin precesses from the effects of major system and network disruptions and to ensure the timely restoration of business ops if significant disruptions occur BCP and DRP
BIA stands for Business Impact Analysis
MTD stands for Maximum Tolerable Downtime first step in building BC program Project initiation and management activites of project initiation and mgmt 1) obtain senior mgmt support
2) define a project scope, the objectives, to be achieved and planning assumptions
3) estimate the project resources needed (human and financial)
4) Define a timeline and major deliverables
Senior leadership's two major goals 1) Grow the business
2) Protect the brand
What are the risk to a corporation for not having BC/DRP? 1) Financial
2) Reputational
3) Regulatory
Formula for calculating financial risk P * M = C
P: Probability of harm
M: Magnitude of harm
C: Cost of prevention
Prudent man rule exercise the same care in managing the company affairs as in managing one's own affairs
1. Which of the following is considered the most important component of the enterprisewide continuity planning program? c. Executive management support
2. During the threat analysis phase of the continuity planning methodology, which of the following threats should be addressed?
a. Physical security
b. Environmental security
c. Information security
d. All of the above d. All of the above
3. The major objective of the business impact assessment process is to:
a. Prioritize time-critical business processes
b. Determine the most appropriate recovery time objective for business processes
c. Assist in prioritization of IT applications and networks
d. All of the above d. All of the above
4. Continuity of IT technologies or IT