© PreEmpt, Inc. Common Misconceptions 1 In Business Continuity Planning.

Slides:



Advertisements
Similar presentations
Information Technology Disaster Recovery Awareness Program.
Advertisements

A Complete and Absolute Shambles Prevention, Planning & Response and Library Disaster Planning RTO No CRICOS No 1505M Vicky Qin Special Collections.
1 Disaster Recovery “Protecting City Data” Ron Bergman First Deputy Commissioner Gregory Neuhaus Assistant Commissioner THE CITY OF NEW YORK.
@TxSchoolSafety Continuity of Operations Planning Workshop Devolution & Reconstitution.
Business Continuity Planning Jeremy Stacy. Objectives Understand the steps in Business Continuity Planning Understand the terminology used in Business.
Business Crisis and Continuity Management (BCCM) Class Session
Planning for Contingencies
1 Copyright © 2014 PPM 2000 Inc. SINGAPRORE, AUGUST 2014 Denis O’Sullivan, CPP INCIDENT MANAGEMENT TECHNOLOGY CHALLENGES.
TRAINING AND DRILLS. Training and Drills Ensure A comprehensive, coordinated, and documented program as an integral part of the emergency management program.
Disaster Recovery and Business Continuity Ensuring Member Service in Times of Crisis.
John Graham – STRATEGIC Information Group Steve Lamb - QAD Disaster Recovery Planning MMUG Spring 2013 March 19, 2013 Cleveland, OH 03/19/2013MMUG Cleveland.
1 Continuity Planning An Overview…. 2 Continuity Planning Bill Scott CBCP Contingency Planning Coordinator Great Lakes Educational Loan Services, Inc.
Business Continuity and You! The Ohio State University Business & Finance Enterprise Continuity Program Quarterly Update October 2008Business and Finance.
Business Continuation Plan / Program Overview State CIO Council Meeting June 24, 2008.
(Insert agency name and/or date) Are we prepared?.
EASTERN MICHIGAN UNIVERSITY Continuity of Operations Planning (COOP)
Continuity Planning & Disaster Recovery ( BRPASW Workshop)
Business Continuity for Facilities Managers Peter Carr FastTrack Solutions Ltd
RBTC: Business Continuity 101 July 18, What is Business Continuity? Scenario Part 1 Why is BC important? What types of plans are needed? How do.
Module 3 Develop the Plan Planning for Emergencies – For Small Business –
ISA 562 Internet Security Theory & Practice
Developing Continuity Plans: The VDEM Model
David N. Wozei Systems Administrator, IT Auditor.
สถานการณ์ ท่านดูรับผิดชอบเรื่องการ เตรียมการและตอบโต้ภาวะฉุกเฉิน ของหน่วยงาน ขณะนี้ท่านได้ จัดทำแผนเผชิญเหตุของ หน่วยงานเสร็จเรียบร้อยแล้ว ท่าน ได้รับคำสั่งจากหัวหน้าหน่วยงาน.
Business Continuity & Disaster recovery
Chapter 17 Writing Informal Reports. s Easy to distribute Memos Relatively informal and used to communicate to people within the same organization.
2010 Virginia RIMS and PRIMA Conference October 5, 2010 Business Impact Analysis: The Road Map to Managing Risks.
Continuity of Operations Planning (COOP) for Community Colleges Welcome Introductions Administration Agenda Classroom Decorum Participant-Instructor.
Business Continuity Program Orientation (insert presentation date) (This presentation is a template that requires adjustments to meet your needs)
Welcome 2011 California Statewide Medical and Health Exercise.
TIJARA Provincial Economic Growth Program Business Continuity / Disaster Recovery Planning Introduction and Workshop Outline Prepared by Larry SanBoeuf.
Office of Emergency Management University of Houston-Clear Lake Business Continuity Planning.
Key Terms Business Continuity Plan (BCP) – A comprehensive written plan to maintain or resume business in the event of a disruption Critical Process –
Continuity of Operations (COOP) Planning Guidelines for Dukes County.
ST GABRIEL’S PREPAREDNESS INITIATIVE Planning Process Meeting 16 Jan 2013.
Author(s): Don M. Blumenthal, 2010 License: Unless otherwise noted, this material is made available under the terms of the Attribution – Non-commercial.
9 juni 2009 Alex van Os de Man BCI Forum 2009 Business Impact Analysis Process.
What is Emergency ?. A serious situation or occurrence that happens unexpectedly and demands immediate action.
FACILITY EMERGENCY TTX. CAPABILITIES MET Capability 1: Preparedness Capability 2: Recovery Capability 3: Emergency Operations Coordination Capability.
Erman Taşkın. Information security aspects of business continuity management Objective: To counteract interruptions to business activities and to protect.
EMERGENCY FACILITIES AND EQUIPMENT. Facility: Any equipment, structure, system, process, or activity that fulfills a specific purpose Site: The area over.
Chapter 3: Business Continuity Planning. Planning for Business Continuity Assess risks to business processes Minimize impact from disruptions Maintain.
Business Continuity Disaster Planning
Business Continuity and You! The Ohio State University Business & Finance Enterprise Continuity Program Quarterly Update July 2008Business and Finance.
SEC 420 Entire Course (UOP) For more course tutorials visit  SEC 420 Week 1 Individual Assignment Responsibilities of Personal Protection.
CBIZ RISK & ADVISORY SERVICES BUSINESS CONTINUITY PLANNING Developing a Readiness Strategy that Mitigates Risk and is Actionable and Easy to Implement.
EXPECT THE UNEXPECTED Prepare Your Business for Disaster.
AUDITING BUSINESS CONTINUITY PROGRAMS AND PLANS What to Look For Presented by: Tommye White, CBCP, DRP Chuck Walts, CBCP, CRP.
© 2013 MHA Consulting All Rights Reserved. 0 Presented by: Richard Long March 10, 2015 Business Alignment Or How I Learned to Stop Saying “IT”
Business Continuity Planning 101
Pandemic Flu Tabletop Exercise (TTX) [insert date of exercise] Public Health – Seattle & King County [insert your agency logo]
TAMP Systems Presents…
Utilizing Your Business Continuity Plan.
[Exercise Name] [Date]
MANAGEMENT of INFORMATION SECURITY, Fifth Edition
Business Continuity / Recovery
CONTINUITY OF OPERATIONS PLANNING WORKSHOP #2
Chapter 8: Planning – Processes and Techniques
Presenter Tracy Hall, MBCP IT Assurance Manager Wolf & Company, P.C Direct:
Lisa Spanberger, MPH Emergency Manager, St. Luke’s
Audit Planning Presentation - Disaster Recovery Plan
Business Contingency Planning
Business Continuity Planning
TAMP Systems Presents…
A Complete and Absolute Shambles
Dennis Reid Senior Consultant Elliot Consulting, LLC
Business Impact Analysis
Continuity of Operations Planning
Business Continuity Program Overview
Establishing a Continuity of Operations Planning program
Presentation transcript:

© PreEmpt, Inc. Common Misconceptions 1 In Business Continuity Planning

© PreEmpt, Inc. Meeting Format  I will act as the Facilitator 2 Your participation is required! And there is plenty of room for different opinions!

© PreEmpt, Inc. Common BCP Misconceptions 1. IT is the Center of the Universe IT is the Center of the Universe 2. Emergency Response has nothing to do with Business Continuity Emergency Response has nothing to do with Business Continuity 3. All departments should have an RTO All departments should have an RTO 4. A BC plan must meet all RTOs A BC plan must meet all RTOs 5. If you don’t have an alternate site, you don’t have a plan If you don’t have an alternate site, you don’t have a plan 6. If you have an alternate site, you have a plan If you have an alternate site, you have a plan 7. If a plan is well written, no decisions will be required following a disruption i.e. just follow the task list If a plan is well written, no decisions will be required following a disruption i.e. just follow the task list 8. All plans should be scenario specific All plans should be scenario specific 9. No plans should be scenario specific No plans should be scenario specific 10. A BIA is a useless exercise – processes will be resumed when IT is resumed – What’s the point? A BIA is a useless exercise – processes will be resumed when IT is resumed – What’s the point? RTOs are a “de facto” computer restoration schedule RTOs are a “de facto” computer restoration schedule 12. The RPO should be set by IT The RPO should be set by IT 13. RTOs should be set by the CIO RTOs should be set by the CIO 14. A properly developed BC plan will prevent all disruptions A properly developed BC plan will prevent all disruptions 15. A BC plan for manufacturing is nonsensical A BC plan for manufacturing is nonsensical 16. Of necessity, good BC plans will be voluminous Of necessity, good BC plans will be voluminous 17. You can’t test a business unit plan You can’t test a business unit plan 18. Business as usual following a disruption is BC’s primary goal Business as usual following a disruption is BC’s primary goal 19. Disruption prevention is NOT a Business Continuity issue Disruption prevention is NOT a Business Continuity issue 20. To be of value, a BC plan must address the entire organization To be of value, a BC plan must address the entire organization Your participation is required! And there is plenty of room for different opinions!

© PreEmpt, Inc. Common BCP Misconceptions 1. IT is the Center of the Universe 4  If not IT, who/what is the center of the universe?  Business process  In most organizations, IT is a resource - not a product or service Back 1. IT is the Center of the Universe IT is the Center of the Universe 2. Emergency Response has nothing to do with Business Continuity Emergency Response has nothing to do with Business Continuity 3. All departments should have an RTO All departments should have an RTO 4. A BC plan must meet all RTOs A BC plan must meet all RTOs 5. If you don’t have an alternate site, you don’t have a plan If you don’t have an alternate site, you don’t have a plan 6. If you have an alternate site, you have a plan If you have an alternate site, you have a plan 7. If a plan is well written, no decisions will be required following a disruption i.e. just follow the task list If a plan is well written, no decisions will be required following a disruption i.e. just follow the task list 8. All plans should be scenario specific All plans should be scenario specific 9. No plans should be scenario specific No plans should be scenario specific 10. A BIA is a useless exercise – processes will be resumed when IT is resumed – What’s the point? A BIA is a useless exercise – processes will be resumed when IT is resumed – What’s the point? 11. RTOs are a “de facto” computer restoration schedule RTOs are a “de facto” computer restoration schedule 12. The RPO should be set by IT The RPO should be set by IT 13. RTOs should be set by the CIO RTOs should be set by the CIO 14. A properly developed BC plan will prevent all disruptions A properly developed BC plan will prevent all disruptions 15. A BC plan for manufacturing is nonsensical A BC plan for manufacturing is nonsensical 16. Of necessity, good BC plans will be voluminous Of necessity, good BC plans will be voluminous 17. You can’t test a business unit plan You can’t test a business unit plan 18. Business as usual following a disruption is BC’s primary goal Business as usual following a disruption is BC’s primary goal 19. Disruption prevention is NOT a Business Continuity issue Disruption prevention is NOT a Business Continuity issue 20. To be of value, a BC plan must address the entire organization To be of value, a BC plan must address the entire organization

© PreEmpt, Inc. Common BCP Misconceptions 2. Emergency Response has nothing to do with Business Continuity 5  Emergency Response & BCP  Life safety – protection of resources  Facility stabilization  Notification & escalation  Damage assessment Back 1. IT is the Center of the Universe IT is the Center of the Universe 2. Emergency Response has nothing to do with Business Continuity Emergency Response has nothing to do with Business Continuity 3. All departments should have an RTO All departments should have an RTO 4. A BC plan must meet all RTOs A BC plan must meet all RTOs 5. If you don’t have an alternate site, you don’t have a plan If you don’t have an alternate site, you don’t have a plan 6. If you have an alternate site, you have a plan If you have an alternate site, you have a plan 7. If a plan is well written, no decisions will be required following a disruption i.e. just follow the task list If a plan is well written, no decisions will be required following a disruption i.e. just follow the task list 8. All plans should be scenario specific All plans should be scenario specific 9. No plans should be scenario specific No plans should be scenario specific 10. A BIA is a useless exercise – processes will be resumed when IT is resumed – What’s the point? A BIA is a useless exercise – processes will be resumed when IT is resumed – What’s the point? 11. RTOs are a “de facto” computer restoration schedule RTOs are a “de facto” computer restoration schedule 12. The RPO should be set by IT The RPO should be set by IT 13. RTOs should be set by the CIO RTOs should be set by the CIO 14. A properly developed BC plan will prevent all disruptions A properly developed BC plan will prevent all disruptions 15. A BC plan for manufacturing is nonsensical A BC plan for manufacturing is nonsensical 16. Of necessity, good BC plans will be voluminous Of necessity, good BC plans will be voluminous 17. You can’t test a business unit plan You can’t test a business unit plan 18. Business as usual following a disruption is BC’s primary goal Business as usual following a disruption is BC’s primary goal 19. Disruption prevention is NOT a Business Continuity issue Disruption prevention is NOT a Business Continuity issue 20. To be of value, a BC plan must address the entire organization To be of value, a BC plan must address the entire organization

© PreEmpt, Inc. Common BCP Misconceptions 3. All departments should have an RTO 6  All business processes in a department do not have the same importance  Each business process should have an RTO  Define RTO Back 1. IT is the Center of the Universe IT is the Center of the Universe 2. Emergency Response has nothing to do with Business Continuity Emergency Response has nothing to do with Business Continuity 3. All departments should have an RTO All departments should have an RTO 4. A BC plan must meet all RTOs A BC plan must meet all RTOs 5. If you don’t have an alternate site, you don’t have a plan If you don’t have an alternate site, you don’t have a plan 6. If you have an alternate site, you have a plan If you have an alternate site, you have a plan 7. If a plan is well written, no decisions will be required following a disruption i.e. just follow the task list If a plan is well written, no decisions will be required following a disruption i.e. just follow the task list 8. All plans should be scenario specific All plans should be scenario specific 9. No plans should be scenario specific No plans should be scenario specific 10. A BIA is a useless exercise – processes will be resumed when IT is resumed – What’s the point? A BIA is a useless exercise – processes will be resumed when IT is resumed – What’s the point? 11. RTOs are a “de facto” computer restoration schedule RTOs are a “de facto” computer restoration schedule 12. The RPO should be set by IT The RPO should be set by IT 13. RTOs should be set by the CIO RTOs should be set by the CIO 14. A properly developed BC plan will prevent all disruptions A properly developed BC plan will prevent all disruptions 15. A BC plan for manufacturing is nonsensical A BC plan for manufacturing is nonsensical 16. Of necessity, good BC plans will be voluminous Of necessity, good BC plans will be voluminous 17. You can’t test a business unit plan You can’t test a business unit plan 18. Business as usual following a disruption is BC’s primary goal Business as usual following a disruption is BC’s primary goal 19. Disruption prevention is NOT a Business Continuity issue Disruption prevention is NOT a Business Continuity issue 20. To be of value, a BC plan must address the entire organization To be of value, a BC plan must address the entire organization

© PreEmpt, Inc. Common BCP Misconceptions 4. A BC plan must meet all RTOs 7  The “O” stands for objective  When actual capability will not meet the RTO  GAP analysis Back 1. IT is the Center of the Universe IT is the Center of the Universe 2. Emergency Response has nothing to do with Business Continuity Emergency Response has nothing to do with Business Continuity 3. All departments should have an RTO All departments should have an RTO 4. A BC plan must meet all RTOs A BC plan must meet all RTOs 5. If you don’t have an alternate site, you don’t have a plan If you don’t have an alternate site, you don’t have a plan 6. If you have an alternate site, you have a plan If you have an alternate site, you have a plan 7. If a plan is well written, no decisions will be required following a disruption i.e. just follow the task list If a plan is well written, no decisions will be required following a disruption i.e. just follow the task list 8. All plans should be scenario specific All plans should be scenario specific 9. No plans should be scenario specific No plans should be scenario specific 10. A BIA is a useless exercise – processes will be resumed when IT is resumed – What’s the point? A BIA is a useless exercise – processes will be resumed when IT is resumed – What’s the point? 11. RTOs are a “de facto” computer restoration schedule RTOs are a “de facto” computer restoration schedule 12. The RPO should be set by IT The RPO should be set by IT 13. RTOs should be set by the CIO RTOs should be set by the CIO 14. A properly developed BC plan will prevent all disruptions A properly developed BC plan will prevent all disruptions 15. A BC plan for manufacturing is nonsensical A BC plan for manufacturing is nonsensical 16. Of necessity, good BC plans will be voluminous Of necessity, good BC plans will be voluminous 17. You can’t test a business unit plan You can’t test a business unit plan 18. Business as usual following a disruption is BC’s primary goal Business as usual following a disruption is BC’s primary goal 19. Disruption prevention is NOT a Business Continuity issue Disruption prevention is NOT a Business Continuity issue 20. To be of value, a BC plan must address the entire organization To be of value, a BC plan must address the entire organization

© PreEmpt, Inc. Common BCP Misconceptions 5. If you don’t have an alternate site, you don’t have a plan 8  Do all plans require an alternate site?  If you need one and don’t have one – what?  The do-nothing option Back 1. IT is the Center of the Universe IT is the Center of the Universe 2. Emergency Response has nothing to do with Business Continuity Emergency Response has nothing to do with Business Continuity 3. All departments should have an RTO All departments should have an RTO 4. A BC plan must meet all RTOs A BC plan must meet all RTOs 5. If you don’t have an alternate site, you don’t have a plan If you don’t have an alternate site, you don’t have a plan 6. If you have an alternate site, you have a plan If you have an alternate site, you have a plan 7. If a plan is well written, no decisions will be required following a disruption i.e. just follow the task list If a plan is well written, no decisions will be required following a disruption i.e. just follow the task list 8. All plans should be scenario specific All plans should be scenario specific 9. No plans should be scenario specific No plans should be scenario specific 10. A BIA is a useless exercise – processes will be resumed when IT is resumed – What’s the point? A BIA is a useless exercise – processes will be resumed when IT is resumed – What’s the point? 11. RTOs are a “de facto” computer restoration schedule RTOs are a “de facto” computer restoration schedule 12. The RPO should be set by IT The RPO should be set by IT 13. RTOs should be set by the CIO RTOs should be set by the CIO 14. A properly developed BC plan will prevent all disruptions A properly developed BC plan will prevent all disruptions 15. A BC plan for manufacturing is nonsensical A BC plan for manufacturing is nonsensical 16. Of necessity, good BC plans will be voluminous Of necessity, good BC plans will be voluminous 17. You can’t test a business unit plan You can’t test a business unit plan 18. Business as usual following a disruption is BC’s primary goal Business as usual following a disruption is BC’s primary goal 19. Disruption prevention is NOT a Business Continuity issue Disruption prevention is NOT a Business Continuity issue 20. To be of value, a BC plan must address the entire organization To be of value, a BC plan must address the entire organization

© PreEmpt, Inc. Common BCP Misconceptions 6. If you have an alternate site, you have a plan 9  An alternate site is a resource Back 1. IT is the Center of the Universe IT is the Center of the Universe 2. Emergency Response has nothing to do with Business Continuity Emergency Response has nothing to do with Business Continuity 3. All departments should have an RTO All departments should have an RTO 4. A BC plan must meet all RTOs A BC plan must meet all RTOs 5. If you don’t have an alternate site, you don’t have a plan If you don’t have an alternate site, you don’t have a plan 6. If you have an alternate site, you have a plan If you have an alternate site, you have a plan 7. If a plan is well written, no decisions will be required following a disruption i.e. just follow the task list If a plan is well written, no decisions will be required following a disruption i.e. just follow the task list 8. All plans should be scenario specific All plans should be scenario specific 9. No plans should be scenario specific No plans should be scenario specific 10. A BIA is a useless exercise – processes will be resumed when IT is resumed – What’s the point? A BIA is a useless exercise – processes will be resumed when IT is resumed – What’s the point? 11. RTOs are a “de facto” computer restoration schedule RTOs are a “de facto” computer restoration schedule 12. The RPO should be set by IT The RPO should be set by IT 13. RTOs should be set by the CIO RTOs should be set by the CIO 14. A properly developed BC plan will prevent all disruptions A properly developed BC plan will prevent all disruptions 15. A BC plan for manufacturing is nonsensical A BC plan for manufacturing is nonsensical 16. Of necessity, good BC plans will be voluminous Of necessity, good BC plans will be voluminous 17. You can’t test a business unit plan You can’t test a business unit plan 18. Business as usual following a disruption is BC’s primary goal Business as usual following a disruption is BC’s primary goal 19. Disruption prevention is NOT a Business Continuity issue Disruption prevention is NOT a Business Continuity issue 20. To be of value, a BC plan must address the entire organization To be of value, a BC plan must address the entire organization

© PreEmpt, Inc. Common BCP Misconceptions 7. If a plan is well written, no decisions will be required following a disruption i.e. just follow the task list 10  Must all defined tasks be performed (based on the actual event)?  Variable strategy  Seasonal issues  What business cycle are we in?  Will all plans be activated? Back 1. IT is the Center of the Universe IT is the Center of the Universe 2. Emergency Response has nothing to do with Business Continuity Emergency Response has nothing to do with Business Continuity 3. All departments should have an RTO All departments should have an RTO 4. A BC plan must meet all RTOs A BC plan must meet all RTOs 5. If you don’t have an alternate site, you don’t have a plan If you don’t have an alternate site, you don’t have a plan 6. If you have an alternate site, you have a plan If you have an alternate site, you have a plan 7. If a plan is well written, no decisions will be required following a disruption i.e. just follow the task list If a plan is well written, no decisions will be required following a disruption i.e. just follow the task list 8. All plans should be scenario specific All plans should be scenario specific 9. No plans should be scenario specific No plans should be scenario specific 10. A BIA is a useless exercise – processes will be resumed when IT is resumed – What’s the point? A BIA is a useless exercise – processes will be resumed when IT is resumed – What’s the point? 11. RTOs are a “de facto” computer restoration schedule RTOs are a “de facto” computer restoration schedule 12. The RPO should be set by IT The RPO should be set by IT 13. RTOs should be set by the CIO RTOs should be set by the CIO 14. A properly developed BC plan will prevent all disruptions A properly developed BC plan will prevent all disruptions 15. A BC plan for manufacturing is nonsensical A BC plan for manufacturing is nonsensical 16. Of necessity, good BC plans will be voluminous Of necessity, good BC plans will be voluminous 17. You can’t test a business unit plan You can’t test a business unit plan 18. Business as usual following a disruption is BC’s primary goal Business as usual following a disruption is BC’s primary goal 19. Disruption prevention is NOT a Business Continuity issue Disruption prevention is NOT a Business Continuity issue 20. To be of value, a BC plan must address the entire organization To be of value, a BC plan must address the entire organization

© PreEmpt, Inc. Common BCP Misconceptions 8. All plans should be scenario specific 11  Hurricanes  Pandemic  Worst Case  Anything between minor & worst case  We cannot possibly define all possible scenarios Back 1. IT is the Center of the Universe IT is the Center of the Universe 2. Emergency Response has nothing to do with Business Continuity Emergency Response has nothing to do with Business Continuity 3. All departments should have an RTO All departments should have an RTO 4. A BC plan must meet all RTOs A BC plan must meet all RTOs 5. If you don’t have an alternate site, you don’t have a plan If you don’t have an alternate site, you don’t have a plan 6. If you have an alternate site, you have a plan If you have an alternate site, you have a plan 7. If a plan is well written, no decisions will be required following a disruption i.e. just follow the task list If a plan is well written, no decisions will be required following a disruption i.e. just follow the task list 8. All plans should be scenario specific All plans should be scenario specific 9. No plans should be scenario specific No plans should be scenario specific 10. A BIA is a useless exercise – processes will be resumed when IT is resumed – What’s the point? A BIA is a useless exercise – processes will be resumed when IT is resumed – What’s the point? 11. RTOs are a “de facto” computer restoration schedule RTOs are a “de facto” computer restoration schedule 12. The RPO should be set by IT The RPO should be set by IT 13. RTOs should be set by the CIO RTOs should be set by the CIO 14. A properly developed BC plan will prevent all disruptions A properly developed BC plan will prevent all disruptions 15. A BC plan for manufacturing is nonsensical A BC plan for manufacturing is nonsensical 16. Of necessity, good BC plans will be voluminous Of necessity, good BC plans will be voluminous 17. You can’t test a business unit plan You can’t test a business unit plan 18. Business as usual following a disruption is BC’s primary goal Business as usual following a disruption is BC’s primary goal 19. Disruption prevention is NOT a Business Continuity issue Disruption prevention is NOT a Business Continuity issue 20. To be of value, a BC plan must address the entire organization To be of value, a BC plan must address the entire organization

© PreEmpt, Inc. Common BCP Misconceptions 9. No plans should be scenario specific 12  Hurricanes  Pandemic  Worst Case  Anything between minor & worst case  We cannot possibly define all possible scenarios Back 1. IT is the Center of the Universe IT is the Center of the Universe 2. Emergency Response has nothing to do with Business Continuity Emergency Response has nothing to do with Business Continuity 3. All departments should have an RTO All departments should have an RTO 4. A BC plan must meet all RTOs A BC plan must meet all RTOs 5. If you don’t have an alternate site, you don’t have a plan If you don’t have an alternate site, you don’t have a plan 6. If you have an alternate site, you have a plan If you have an alternate site, you have a plan 7. If a plan is well written, no decisions will be required following a disruption i.e. just follow the task list If a plan is well written, no decisions will be required following a disruption i.e. just follow the task list 8. All plans should be scenario specific All plans should be scenario specific 9. No plans should be scenario specific No plans should be scenario specific 10. A BIA is a useless exercise – processes will be resumed when IT is resumed – What’s the point? A BIA is a useless exercise – processes will be resumed when IT is resumed – What’s the point? 11. RTOs are a “de facto” computer restoration schedule RTOs are a “de facto” computer restoration schedule 12. The RPO should be set by IT The RPO should be set by IT 13. RTOs should be set by the CIO RTOs should be set by the CIO 14. A properly developed BC plan will prevent all disruptions A properly developed BC plan will prevent all disruptions 15. A BC plan for manufacturing is nonsensical A BC plan for manufacturing is nonsensical 16. Of necessity, good BC plans will be voluminous Of necessity, good BC plans will be voluminous 17. You can’t test a business unit plan You can’t test a business unit plan 18. Business as usual following a disruption is BC’s primary goal Business as usual following a disruption is BC’s primary goal 19. Disruption prevention is NOT a Business Continuity issue Disruption prevention is NOT a Business Continuity issue 20. To be of value, a BC plan must address the entire organization To be of value, a BC plan must address the entire organization

© PreEmpt, Inc. Common BCP Misconceptions 10. A BIA is a useless exercise – processes will be resumed when IT is resumed – What’s the point? 13  What is a BIA?  What are deliverables from a BIA?  Why the granularity provided by the BIA is important Back 1. IT is the Center of the Universe IT is the Center of the Universe 2. Emergency Response has nothing to do with Business Continuity Emergency Response has nothing to do with Business Continuity 3. All departments should have an RTO All departments should have an RTO 4. A BC plan must meet all RTOs A BC plan must meet all RTOs 5. If you don’t have an alternate site, you don’t have a plan If you don’t have an alternate site, you don’t have a plan 6. If you have an alternate site, you have a plan If you have an alternate site, you have a plan 7. If a plan is well written, no decisions will be required following a disruption i.e. just follow the task list If a plan is well written, no decisions will be required following a disruption i.e. just follow the task list 8. All plans should be scenario specific All plans should be scenario specific 9. No plans should be scenario specific No plans should be scenario specific 10. A BIA is a useless exercise – processes will be resumed when IT is resumed – What’s the point? A BIA is a useless exercise – processes will be resumed when IT is resumed – What’s the point? 11. RTOs are a “de facto” computer restoration schedule RTOs are a “de facto” computer restoration schedule 12. The RPO should be set by IT The RPO should be set by IT 13. RTOs should be set by the CIO RTOs should be set by the CIO 14. A properly developed BC plan will prevent all disruptions A properly developed BC plan will prevent all disruptions 15. A BC plan for manufacturing is nonsensical A BC plan for manufacturing is nonsensical 16. Of necessity, good BC plans will be voluminous Of necessity, good BC plans will be voluminous 17. You can’t test a business unit plan You can’t test a business unit plan 18. Business as usual following a disruption is BC’s primary goal Business as usual following a disruption is BC’s primary goal 19. Disruption prevention is NOT a Business Continuity issue Disruption prevention is NOT a Business Continuity issue 20. To be of value, a BC plan must address the entire organization To be of value, a BC plan must address the entire organization

© PreEmpt, Inc. Common BCP Misconceptions RTOs are a “de facto” computer restoration schedule  What is an RTO?  The relationship between RTO and computer restoration Back 1. IT is the Center of the Universe IT is the Center of the Universe 2. Emergency Response has nothing to do with Business Continuity Emergency Response has nothing to do with Business Continuity 3. All departments should have an RTO All departments should have an RTO 4. A BC plan must meet all RTOs A BC plan must meet all RTOs 5. If you don’t have an alternate site, you don’t have a plan If you don’t have an alternate site, you don’t have a plan 6. If you have an alternate site, you have a plan If you have an alternate site, you have a plan 7. If a plan is well written, no decisions will be required following a disruption i.e. just follow the task list If a plan is well written, no decisions will be required following a disruption i.e. just follow the task list 8. All plans should be scenario specific All plans should be scenario specific 9. No plans should be scenario specific No plans should be scenario specific 10. A BIA is a useless exercise – processes will be resumed when IT is resumed – What’s the point? A BIA is a useless exercise – processes will be resumed when IT is resumed – What’s the point? 11. RTOs are a “de facto” computer restoration schedule RTOs are a “de facto” computer restoration schedule 12. The RPO should be set by IT The RPO should be set by IT 13. RTOs should be set by the CIO RTOs should be set by the CIO 14. A properly developed BC plan will prevent all disruptions A properly developed BC plan will prevent all disruptions 15. A BC plan for manufacturing is nonsensical A BC plan for manufacturing is nonsensical 16. Of necessity, good BC plans will be voluminous Of necessity, good BC plans will be voluminous 17. You can’t test a business unit plan You can’t test a business unit plan 18. Business as usual following a disruption is BC’s primary goal Business as usual following a disruption is BC’s primary goal 19. Disruption prevention is NOT a Business Continuity issue Disruption prevention is NOT a Business Continuity issue 20. To be of value, a BC plan must address the entire organization To be of value, a BC plan must address the entire organization

© PreEmpt, Inc. Common BCP Misconceptions The RPO should be set by IT  The process owner and the RTO  IT’s role in setting the RTO Back 1. IT is the Center of the Universe IT is the Center of the Universe 2. Emergency Response has nothing to do with Business Continuity Emergency Response has nothing to do with Business Continuity 3. All departments should have an RTO All departments should have an RTO 4. A BC plan must meet all RTOs A BC plan must meet all RTOs 5. If you don’t have an alternate site, you don’t have a plan If you don’t have an alternate site, you don’t have a plan 6. If you have an alternate site, you have a plan If you have an alternate site, you have a plan 7. If a plan is well written, no decisions will be required following a disruption i.e. just follow the task list If a plan is well written, no decisions will be required following a disruption i.e. just follow the task list 8. All plans should be scenario specific All plans should be scenario specific 9. No plans should be scenario specific No plans should be scenario specific 10. A BIA is a useless exercise – processes will be resumed when IT is resumed – What’s the point? A BIA is a useless exercise – processes will be resumed when IT is resumed – What’s the point? 11. RTOs are a “de facto” computer restoration schedule RTOs are a “de facto” computer restoration schedule 12. The RPO should be set by IT The RPO should be set by IT 13. RTOs should be set by the CIO RTOs should be set by the CIO 14. A properly developed BC plan will prevent all disruptions A properly developed BC plan will prevent all disruptions 15. A BC plan for manufacturing is nonsensical A BC plan for manufacturing is nonsensical 16. Of necessity, good BC plans will be voluminous Of necessity, good BC plans will be voluminous 17. You can’t test a business unit plan You can’t test a business unit plan 18. Business as usual following a disruption is BC’s primary goal Business as usual following a disruption is BC’s primary goal 19. Disruption prevention is NOT a Business Continuity issue Disruption prevention is NOT a Business Continuity issue 20. To be of value, a BC plan must address the entire organization To be of value, a BC plan must address the entire organization

© PreEmpt, Inc. Common BCP Misconceptions RTOs should be set by the CIO  The CIO’s role  Things that are not the CIO’s role Back 1. IT is the Center of the Universe IT is the Center of the Universe 2. Emergency Response has nothing to do with Business Continuity Emergency Response has nothing to do with Business Continuity 3. All departments should have an RTO All departments should have an RTO 4. A BC plan must meet all RTOs A BC plan must meet all RTOs 5. If you don’t have an alternate site, you don’t have a plan If you don’t have an alternate site, you don’t have a plan 6. If you have an alternate site, you have a plan If you have an alternate site, you have a plan 7. If a plan is well written, no decisions will be required following a disruption i.e. just follow the task list If a plan is well written, no decisions will be required following a disruption i.e. just follow the task list 8. All plans should be scenario specific All plans should be scenario specific 9. No plans should be scenario specific No plans should be scenario specific 10. A BIA is a useless exercise – processes will be resumed when IT is resumed – What’s the point? A BIA is a useless exercise – processes will be resumed when IT is resumed – What’s the point? 11. RTOs are a “de facto” computer restoration schedule RTOs are a “de facto” computer restoration schedule 12. The RPO should be set by IT The RPO should be set by IT 13. RTOs should be set by the CIO RTOs should be set by the CIO 14. A properly developed BC plan will prevent all disruptions A properly developed BC plan will prevent all disruptions 15. A BC plan for manufacturing is nonsensical A BC plan for manufacturing is nonsensical 16. Of necessity, good BC plans will be voluminous Of necessity, good BC plans will be voluminous 17. You can’t test a business unit plan You can’t test a business unit plan 18. Business as usual following a disruption is BC’s primary goal Business as usual following a disruption is BC’s primary goal 19. Disruption prevention is NOT a Business Continuity issue Disruption prevention is NOT a Business Continuity issue 20. To be of value, a BC plan must address the entire organization To be of value, a BC plan must address the entire organization

© PreEmpt, Inc. Common BCP Misconceptions A properly developed BC plan will prevent all disruptions  If only we had that within our power  It will not be business as usual Back 1. IT is the Center of the Universe IT is the Center of the Universe 2. Emergency Response has nothing to do with Business Continuity Emergency Response has nothing to do with Business Continuity 3. All departments should have an RTO All departments should have an RTO 4. A BC plan must meet all RTOs A BC plan must meet all RTOs 5. If you don’t have an alternate site, you don’t have a plan If you don’t have an alternate site, you don’t have a plan 6. If you have an alternate site, you have a plan If you have an alternate site, you have a plan 7. If a plan is well written, no decisions will be required following a disruption i.e. just follow the task list If a plan is well written, no decisions will be required following a disruption i.e. just follow the task list 8. All plans should be scenario specific All plans should be scenario specific 9. No plans should be scenario specific No plans should be scenario specific 10. A BIA is a useless exercise – processes will be resumed when IT is resumed – What’s the point? A BIA is a useless exercise – processes will be resumed when IT is resumed – What’s the point? 11. RTOs are a “de facto” computer restoration schedule RTOs are a “de facto” computer restoration schedule 12. The RPO should be set by IT The RPO should be set by IT 13. RTOs should be set by the CIO RTOs should be set by the CIO 14. A properly developed BC plan will prevent all disruptions A properly developed BC plan will prevent all disruptions 15. A BC plan for manufacturing is nonsensical A BC plan for manufacturing is nonsensical 16. Of necessity, good BC plans will be voluminous Of necessity, good BC plans will be voluminous 17. You can’t test a business unit plan You can’t test a business unit plan 18. Business as usual following a disruption is BC’s primary goal Business as usual following a disruption is BC’s primary goal 19. Disruption prevention is NOT a Business Continuity issue Disruption prevention is NOT a Business Continuity issue 20. To be of value, a BC plan must address the entire organization To be of value, a BC plan must address the entire organization

© PreEmpt, Inc. Common BCP Misconceptions A BC plan for manufacturing is nonsensical  Can we develop BC plans for:  Manufacturing?  Labs?  Rehabilitation centers?  Any equipment intensive operation? Back 1. IT is the Center of the Universe IT is the Center of the Universe 2. Emergency Response has nothing to do with Business Continuity Emergency Response has nothing to do with Business Continuity 3. All departments should have an RTO All departments should have an RTO 4. A BC plan must meet all RTOs A BC plan must meet all RTOs 5. If you don’t have an alternate site, you don’t have a plan If you don’t have an alternate site, you don’t have a plan 6. If you have an alternate site, you have a plan If you have an alternate site, you have a plan 7. If a plan is well written, no decisions will be required following a disruption i.e. just follow the task list If a plan is well written, no decisions will be required following a disruption i.e. just follow the task list 8. All plans should be scenario specific All plans should be scenario specific 9. No plans should be scenario specific No plans should be scenario specific 10. A BIA is a useless exercise – processes will be resumed when IT is resumed – What’s the point? A BIA is a useless exercise – processes will be resumed when IT is resumed – What’s the point? 11. RTOs are a “de facto” computer restoration schedule RTOs are a “de facto” computer restoration schedule 12. The RPO should be set by IT The RPO should be set by IT 13. RTOs should be set by the CIO RTOs should be set by the CIO 14. A properly developed BC plan will prevent all disruptions A properly developed BC plan will prevent all disruptions 15. A BC plan for manufacturing is nonsensical A BC plan for manufacturing is nonsensical 16. Of necessity, good BC plans will be voluminous Of necessity, good BC plans will be voluminous 17. You can’t test a business unit plan You can’t test a business unit plan 18. Business as usual following a disruption is BC’s primary goal Business as usual following a disruption is BC’s primary goal 19. Disruption prevention is NOT a Business Continuity issue Disruption prevention is NOT a Business Continuity issue 20. To be of value, a BC plan must address the entire organization To be of value, a BC plan must address the entire organization

© PreEmpt, Inc. Common BCP Misconceptions Of necessity, good BC plans will be voluminous  Historically  Voluminous plans will not be used under duress  What to do with all those equipment schedules, etc. Back 1. IT is the Center of the Universe IT is the Center of the Universe 2. Emergency Response has nothing to do with Business Continuity Emergency Response has nothing to do with Business Continuity 3. All departments should have an RTO All departments should have an RTO 4. A BC plan must meet all RTOs A BC plan must meet all RTOs 5. If you don’t have an alternate site, you don’t have a plan If you don’t have an alternate site, you don’t have a plan 6. If you have an alternate site, you have a plan If you have an alternate site, you have a plan 7. If a plan is well written, no decisions will be required following a disruption i.e. just follow the task list If a plan is well written, no decisions will be required following a disruption i.e. just follow the task list 8. All plans should be scenario specific All plans should be scenario specific 9. No plans should be scenario specific No plans should be scenario specific 10. A BIA is a useless exercise – processes will be resumed when IT is resumed – What’s the point? A BIA is a useless exercise – processes will be resumed when IT is resumed – What’s the point? 11. RTOs are a “de facto” computer restoration schedule RTOs are a “de facto” computer restoration schedule 12. The RPO should be set by IT The RPO should be set by IT 13. RTOs should be set by the CIO RTOs should be set by the CIO 14. A properly developed BC plan will prevent all disruptions A properly developed BC plan will prevent all disruptions 15. A BC plan for manufacturing is nonsensical A BC plan for manufacturing is nonsensical 16. Of necessity, good BC plans will be voluminous Of necessity, good BC plans will be voluminous 17. You can’t test a business unit plan You can’t test a business unit plan 18. Business as usual following a disruption is BC’s primary goal Business as usual following a disruption is BC’s primary goal 19. Disruption prevention is NOT a Business Continuity issue Disruption prevention is NOT a Business Continuity issue 20. To be of value, a BC plan must address the entire organization To be of value, a BC plan must address the entire organization

© PreEmpt, Inc. Common BCP Misconceptions You can’t test a business unit plan  Test vs exercise  Test equipment  Exercise plans  Train people Back 1. IT is the Center of the Universe IT is the Center of the Universe 2. Emergency Response has nothing to do with Business Continuity Emergency Response has nothing to do with Business Continuity 3. All departments should have an RTO All departments should have an RTO 4. A BC plan must meet all RTOs A BC plan must meet all RTOs 5. If you don’t have an alternate site, you don’t have a plan If you don’t have an alternate site, you don’t have a plan 6. If you have an alternate site, you have a plan If you have an alternate site, you have a plan 7. If a plan is well written, no decisions will be required following a disruption i.e. just follow the task list If a plan is well written, no decisions will be required following a disruption i.e. just follow the task list 8. All plans should be scenario specific All plans should be scenario specific 9. No plans should be scenario specific No plans should be scenario specific 10. A BIA is a useless exercise – processes will be resumed when IT is resumed – What’s the point? A BIA is a useless exercise – processes will be resumed when IT is resumed – What’s the point? 11. RTOs are a “de facto” computer restoration schedule RTOs are a “de facto” computer restoration schedule 12. The RPO should be set by IT The RPO should be set by IT 13. RTOs should be set by the CIO RTOs should be set by the CIO 14. A properly developed BC plan will prevent all disruptions A properly developed BC plan will prevent all disruptions 15. A BC plan for manufacturing is nonsensical A BC plan for manufacturing is nonsensical 16. Of necessity, good BC plans will be voluminous Of necessity, good BC plans will be voluminous 17. You can’t test a business unit plan You can’t test a business unit plan 18. Business as usual following a disruption is BC’s primary goal Business as usual following a disruption is BC’s primary goal 19. Disruption prevention is NOT a Business Continuity issue Disruption prevention is NOT a Business Continuity issue 20. To be of value, a BC plan must address the entire organization To be of value, a BC plan must address the entire organization

© PreEmpt, Inc. Common BCP Misconceptions Business as usual following a disruption is BC’s primary goal  All parties should understand…  It will not be business as usual Back 1. IT is the Center of the Universe IT is the Center of the Universe 2. Emergency Response has nothing to do with Business Continuity Emergency Response has nothing to do with Business Continuity 3. All departments should have an RTO All departments should have an RTO 4. A BC plan must meet all RTOs A BC plan must meet all RTOs 5. If you don’t have an alternate site, you don’t have a plan If you don’t have an alternate site, you don’t have a plan 6. If you have an alternate site, you have a plan If you have an alternate site, you have a plan 7. If a plan is well written, no decisions will be required following a disruption i.e. just follow the task list If a plan is well written, no decisions will be required following a disruption i.e. just follow the task list 8. All plans should be scenario specific All plans should be scenario specific 9. No plans should be scenario specific No plans should be scenario specific 10. A BIA is a useless exercise – processes will be resumed when IT is resumed – What’s the point? A BIA is a useless exercise – processes will be resumed when IT is resumed – What’s the point? 11. RTOs are a “de facto” computer restoration schedule RTOs are a “de facto” computer restoration schedule 12. The RPO should be set by IT The RPO should be set by IT 13. RTOs should be set by the CIO RTOs should be set by the CIO 14. A properly developed BC plan will prevent all disruptions A properly developed BC plan will prevent all disruptions 15. A BC plan for manufacturing is nonsensical A BC plan for manufacturing is nonsensical 16. Of necessity, good BC plans will be voluminous Of necessity, good BC plans will be voluminous 17. You can’t test a business unit plan You can’t test a business unit plan 18. Business as usual following a disruption is BC’s primary goal Business as usual following a disruption is BC’s primary goal 19. Disruption prevention is NOT a Business Continuity issue Disruption prevention is NOT a Business Continuity issue 20. To be of value, a BC plan must address the entire organization To be of value, a BC plan must address the entire organization

© PreEmpt, Inc. Common BCP Misconceptions Disruption prevention is NOT a Business Continuity issue  If it never happens, we have achieved business continuity Back 1. IT is the Center of the Universe IT is the Center of the Universe 2. Emergency Response has nothing to do with Business Continuity Emergency Response has nothing to do with Business Continuity 3. All departments should have an RTO All departments should have an RTO 4. A BC plan must meet all RTOs A BC plan must meet all RTOs 5. If you don’t have an alternate site, you don’t have a plan If you don’t have an alternate site, you don’t have a plan 6. If you have an alternate site, you have a plan If you have an alternate site, you have a plan 7. If a plan is well written, no decisions will be required following a disruption i.e. just follow the task list If a plan is well written, no decisions will be required following a disruption i.e. just follow the task list 8. All plans should be scenario specific All plans should be scenario specific 9. No plans should be scenario specific No plans should be scenario specific 10. A BIA is a useless exercise – processes will be resumed when IT is resumed – What’s the point? A BIA is a useless exercise – processes will be resumed when IT is resumed – What’s the point? 11. RTOs are a “de facto” computer restoration schedule RTOs are a “de facto” computer restoration schedule 12. The RPO should be set by IT The RPO should be set by IT 13. RTOs should be set by the CIO RTOs should be set by the CIO 14. A properly developed BC plan will prevent all disruptions A properly developed BC plan will prevent all disruptions 15. A BC plan for manufacturing is nonsensical A BC plan for manufacturing is nonsensical 16. Of necessity, good BC plans will be voluminous Of necessity, good BC plans will be voluminous 17. You can’t test a business unit plan You can’t test a business unit plan 18. Business as usual following a disruption is BC’s primary goal Business as usual following a disruption is BC’s primary goal 19. Disruption prevention is NOT a Business Continuity issue Disruption prevention is NOT a Business Continuity issue 20. To be of value, a BC plan must address the entire organization To be of value, a BC plan must address the entire organization

© PreEmpt, Inc. Common BCP Misconceptions To be of value, a BC plan must address the entire organization  The entire organization is our goal  If I need to fix both the brakes and the wipers on my car, and I only fix the brakes, does the fix still have value? Back 1. IT is the Center of the Universe IT is the Center of the Universe 2. Emergency Response has nothing to do with Business Continuity Emergency Response has nothing to do with Business Continuity 3. All departments should have an RTO All departments should have an RTO 4. A BC plan must meet all RTOs A BC plan must meet all RTOs 5. If you don’t have an alternate site, you don’t have a plan If you don’t have an alternate site, you don’t have a plan 6. If you have an alternate site, you have a plan If you have an alternate site, you have a plan 7. If a plan is well written, no decisions will be required following a disruption i.e. just follow the task list If a plan is well written, no decisions will be required following a disruption i.e. just follow the task list 8. All plans should be scenario specific All plans should be scenario specific 9. No plans should be scenario specific No plans should be scenario specific 10. A BIA is a useless exercise – processes will be resumed when IT is resumed – What’s the point? A BIA is a useless exercise – processes will be resumed when IT is resumed – What’s the point? 11. RTOs are a “de facto” computer restoration schedule RTOs are a “de facto” computer restoration schedule 12. The RPO should be set by IT The RPO should be set by IT 13. RTOs should be set by the CIO RTOs should be set by the CIO 14. A properly developed BC plan will prevent all disruptions A properly developed BC plan will prevent all disruptions 15. A BC plan for manufacturing is nonsensical A BC plan for manufacturing is nonsensical 16. Of necessity, good BC plans will be voluminous Of necessity, good BC plans will be voluminous 17. You can’t test a business unit plan You can’t test a business unit plan 18. Business as usual following a disruption is BC’s primary goal Business as usual following a disruption is BC’s primary goal 19. Disruption prevention is NOT a Business Continuity issue Disruption prevention is NOT a Business Continuity issue 20. To be of value, a BC plan must address the entire organization To be of value, a BC plan must address the entire organization

© PreEmpt, Inc. 24 PreEmpt, Inc.

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2024 SlidePlayer.com. Inc. All rights reserved.