The "Who, What, When, Where, Why, and How" of a

Slides:



Advertisements
Similar presentations
Information Technology Disaster Recovery Awareness Program.
Advertisements

Creating a Data Disaster Recovery Plan. What is a DR Plan? Is your best solution to: Continuous business services Prompt and smooth recovery Prepare for.
BCM and Security ROGSI/DMS Präsentation ROGSI/DMS Suite for Corporate Survival ROGSI/Business Impact Analysis TOP 7 Best Practices for Business Continuity.
1 The process of analyzing all core business functions and establishing an optimized timetable for recovery. Provides baseline for:  Justification for.
CIOassist Technologies Your CIO on Demand… Business Continuity Planning Our Offering CIOassist Technologies (
Maximizing Uptime and Your Firm's Bottom Line: Understanding risk and budget when evaluating business continuity & disaster recovery protocols Michael.
1 Disaster Recovery “Protecting City Data” Ron Bergman First Deputy Commissioner Gregory Neuhaus Assistant Commissioner THE CITY OF NEW YORK.
Building a Business Case for Disaster Recovery Planning - State and Local Government Chris Turnley
Business Continuity Planning (BCP) & Disaster Recovery Planning (DRP)
Business Continuity Planning Jeremy Stacy. Objectives Understand the steps in Business Continuity Planning Understand the terminology used in Business.
Business Continuity Planning and Disaster Recovery Planning
1 Business Continuity: The sixth international payment system conference MNB, Budapest 14 November, 2007.
Degree and Graduation Seminar Scope Management
The methodologies reflected in the enclosed material, including the benchmark comparisons, are confidential and proprietary information of NewLane, LLC.
Saving Your Business from a Data Loss Randy Clark.
By Jeff Fetherolf. Business Impact Analysis (BIA) A process of having the business process owners, business subject matter experts, etc. identify the.
Gulf Coast Energy International Business Continuity / Disaster Recovery Planning and Design Proposal Prepared by Andrew Rolf, Felipe Torres, Pranay Jaiswal.
Requirements Management
Compliance Risk Self Assessment Model. Compliance Risk - Definition  The risk to earnings or capital arising from violations of, or nonconformance with.
Business Continuation Plan / Program Overview State CIO Council Meeting June 24, 2008.
“A Prepared Marylander Creates a Resilient Maryland” Vital Records Identification and Maintenance February 6, 2014 This document was prepared under a grant.
Business Continuity and Disaster Recovery Chapter 8 Part 2 Pages 914 to 945.
IS 380.  Provides detailed procedures to keep the business running and minimize loss of life and money  Identifies emergency response procedures  Identifies.
ISA 562 Internet Security Theory & Practice
DotHill Systems Data Management Services. Page 2 Agenda Why protect your data?  Causes of data loss  Hardware data protection  DMS data protection.
CHAPTER 3: Marketing Planning
GBA IT Project Management Final Project - Establishment of a Project Management Management Office 10 July, 2003.
The views expressed in this presentation do not necessarily reflect those of the Federal Reserve Bank of New York or the Federal Reserve System Association.
Business Continuity and Disaster Recovery Chapter 8 Part 1 Pages 897 to 914.
Project Plan. Project Plan Components Project Overview – Description and Strategy Business Case Summary Key Deliverables and Scope Critical Success Factors.
DRP World Class Operations - Impact Workshop Info-Tech Research Group, Inc. Is a global leader in providing IT research and advice. Info-Tech’s products.
ERMAN TAŞKIN ERMAN TAŞKIN İş Sürekliliği Yönetim Süreci ve Karar Verme Metodolojisi.
Phases of BCP The BCP process can be divided into the following life cycle phases: Creation of a business continuity and disaster recovery policy. Business.
Key Terms Business Continuity Plan (BCP) – A comprehensive written plan to maintain or resume business in the event of a disruption Critical Process –
9 juni 2009 Alex van Os de Man BCI Forum 2009 Business Impact Analysis Process.
Chapter 3: Business Continuity Planning. Planning for Business Continuity Assess risks to business processes Minimize impact from disruptions Maintain.
Business Continuity Disaster Planning
CBIZ RISK & ADVISORY SERVICES BUSINESS CONTINUITY PLANNING Developing a Readiness Strategy that Mitigates Risk and is Actionable and Easy to Implement.
Dr. Gerry Firmansyah CID Business Continuity and Disaster Recovery Planning for IT (W-VI)
Business Continuity Planning 101
Dr. Gerry Firmansyah CID Business Continuity and Disaster Recovery Planning for IT (W-I)
Your Prescription for Requirements Management 1. Assumptions The prescription for requirements management is based on the following assumptions:  The.
MANAGEMENT of INFORMATION SECURITY, Fifth Edition.
ISO 14001:2004 Clause 4.3 Planning. Clause 4.3 Planning Key Requirements of Environmental Management System Certification.
Donald JG Chiarella, PhD, CISM, CDMP, PEM, CHS-CIA, MBA.
THINK DIFFERENT. THINK SUCCESS.
Project Management for Treasury Professionals
Planning for Application Recovery
Utilizing Your Business Continuity Plan.
Business Impact Analysis
The case for a disaster recovery strategy for component XYZ
We will start momentarily…
Business Continuity / Recovery
Business Continuity Plan Training
Presenter Tracy Hall, MBCP IT Assurance Manager Wolf & Company, P.C Direct:
Alabede, Collura, Walden, Zimmerman
How does a Requirements Package Vary from Project to Project?
Fundamentals of a Business Impact Analysis
Mission Essential Functions Identification and Prioritization
Audit Planning Presentation - Disaster Recovery Plan
Personal Introduction
CompTIA Security+ Study Guide (SY0-501)
Dennis Reid Senior Consultant Elliot Consulting, LLC
Mark Tyler Nigel Crowhurst
Unit 2: Fundamentals of Computer Systems
Purchasing Virtual Business Challenge
A Real-world Exploration of BC and DR Audit
University of Maryland Robert H. Smith School of Business
IT SERVICE CONTINUITY PLAN
Conducting a Business Impact Analysis (BIA)
Presentation transcript:

The "Who, What, When, Where, Why, and How" of a Business Impact Analysis April 25, 2018

What is a BIA? What are the components? What are the critical business processes? What is the desired output?

Why the need for a Business Impact Analysis?

Who should be interviewed? Depart heads SMEs (business and IT) Critical vendors Who should validate responses? Department IT Senior Management Who sees the final results?

Frequency Program Initiation Annually, in the Spring OR New Services New or Enhanced Applications/Systems New Processes New Vendors

Business Process Recovery Objectives Recovery Metrics RTO (RTA) RPO (RPA) MAD Workarounds Tiers

Where do you store the information you’ve collected? Word/Excel? BCM Software? (Cloud or in-house) Be sure it’s backed up! Where do you store the backup?

Executive Buy In Create a Project Plan Develop Questionnaire Kickoff Meeting Establish Timeline Objective Department Interviews Validate results (Business and IT) Publish Findings (business speak vs. BC jargon) Department Signoff Executive Presentation Executive Signoff

Considerations The Interview Distributed questionnaire vs. live interview Live Interview Group or Department (consider scope) Length of interview Questionnaire Length of questionnaire Time allowed to complete

Considerations The Questions Business cycles (peak periods) Operational Impacts Financial Impacts Qualitative Impacts (brand image, customer confidence) Legal or Regulatory impacts Upstream, Downstream dependencies Staffing requirements Vital records Process documentation and workarounds Downtime tolerances and data loss

Think worst case business impact Not our place to say right or wrong but we can challenge assumptions or statements Be cognizant of the number of total processes Have a standardized set of descriptions for critical processes Senior Management has final say or what is critical

Questions?

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.