Business Continuity and Disaster Recovery - Risk Analysis and Control

Business Continuity and Disaster Recovery - Risk Analysis and Control

 by: Robert Mahood

In the risk evaluation phase, there are a number of key areas that must be covered. One of the most important is to understand probable threats. In an ideal world, which most of us have noticed does not exist, we would identify and protect ourselves against all threats to ensure that our business continues to survive. Obviously, we are constrained by other factors such as budgets, time and priorities and need to apply cost benefit analysis to ensure we are protecting the most critical business functions.

A second important step is to identify all probable threats and prioritize them. Threats, typically, can be classified in several ways such as internal/external, man-made/natural, primary/secondary, accidental/intentional, controllable/not controllable, warning/no warning, frequency, duration, speed of onset etc. While classifying threats is helpful in terms of understanding their characteristics and potential controls, grouping and understanding by business impact is also important. Obviously, the same impact can result from a number of different threats.

Identifying mission critical business processes and systems is another fundamental building block of the business continuity plan. After your critical business processes and systems and probable threats are established, the next step is to identify vulnerabilities and loss potential. This requires an extensive scan of the organization to identify vulnerabilities and then analysis to understand those vulnerabilities which would have the greatest impact on your critical business processes and the organization. This starts to clarify and quantify potential losses, which helps to establish priorities.

Following the identification of the most probable threats and vulnerabilities, an analysis of existing controls is needed. This spans physical security as well as people, processes, data, communications and asset protection. Some controls such as physical security and data backup are obvious. Other controls required are often less obvious, but they can be identified through the risk evaluation process.

Once the key building blocks of critical business functions, most probable threats, vulnerabilities and controls are identified, the next stage is to develop an understanding of the probability of threats factored by the severity or impact of the threats. This leads to the business impact analysis phase which establishes priorities for protection.

The goal is to minimize threats, impacts and downtime and to mitigate any losses. Fundamentally, the goal is to protect your people, protect your data, protect your vital communications, protect your assets and to protect your brand and reputation. Overall, of course, the goal is to ensure your business continues to operate and to do it in a cost-effective way meeting standards of reasonable and prudent judgment.

Bob Mahood


Midwest Data Recovery Inc.


www.midwestdatarecovery.com


bmahood@midwestdatarecovery.com


312 907 2100 or 866 786 2595

About The Author

Robert Mahood has significant technology and management experience in data communications, internet, storage, disaster recovery and data recovery. He is currently the president of Midwest Data Recovery. www.midwestdatarecovery.com


bmahood@midwestdatarecovery.com

More Computers and The Internet and other resouces to help you locate great articles just like Business Continuity and Disaster Recovery - Risk Analysis and Control :

Here are other categories to find more must know information on anything and everything.
Auto and Trucks
Business and Finance
Computers and Internet
Education
Environment
Family
Food and Drink
Gadgets and Gizmos
Gardening
Government
Health
Hobbies
Home Improvement
Kids and Teens
Legal Matters
Marketing
Music and Entertainment
Online Business
Parenting
Pets and Animals
Recreation and Sports
Self Improvemen
Site Promotion
Travel and Leisure
Web Development
Women
Writing
 Here are more Computers and The Internet articles to give you more must know information just like in Business Continuity and Disaster Recovery - Risk Analysis and Control article.

Writing Helpful Help – A Minimalism Checklist
User documentation is all too often written by programmers for programmers. It tends to focus on the product’s features, rather than the user’s tasks. Generally, programmers aren’t in the ideal posit...
Read more

What Are International ISP & Global ISP?
The world has become a lot smaller of a place these days. For businesses, the marketplace has extended to include the entire globe. Many more people are traveling much more extensively for business a...
Read more

The True Meaning of Freeware
The vast majority of us will have, at some point, had freeware games or applications installed on our systems. If you’ve played an online Java or Flash based game, you’ve used freeware. In a very rea...
Read more

LiveCamNetwork.com Announces Its Fall Line-Up
(Toronto) September 7, 2004 -- Studio manager at LiveCamNetwork.com, Office Gnome has settled on her chat hostesses for the coming pre-glacial months of early winter.

While Office Gnome has been hard at work dealing with schedules, interviews and ...
Read more

Executive director
Java Process Visualisation and Control Suite is a highly scalable, modular and generic software solution that offers all the tools needed to define, visualise and control any business process in a very intuitive and user friendly fashion.

The suite...
Read more

 

Thank you very much for viewing this must know article: Business Continuity and Disaster Recovery - Risk Analysis and Control . Hopefully you have found all the information you were looking for in " Business Continuity and Disaster Recovery - Risk Analysis and Control ". If you feel like you need more information feel free to check out Info Pom HOMEPAGE to look for more articles in our humangous database

Site Partners:
Background Check