Business Continuity Planning Keeping Pace with New Technology

Similar documents
Business continuity management and cyber resiliency

Introduction to Business continuity Planning

Business Continuity Management Standards A Side-by-Side Comparison

2 ESF 2 Communications

Disaster Recovery and Business Continuity Planning (Mile2)

Business Continuity and Disaster Recovery

Emergency Support Function #2 Communications Annex INTRODUCTION. Purpose. Scope. ESF Coordinator: Support Agencies: Primary Agencies:

Appendix 3 Disaster Recovery Plan

Business Continuity: How to Keep City Departments in Business after a Disaster

How to Conduct a Business Impact Analysis and Risk Assessment

Canada Life Cyber Security Statement 2018

HIPAA RISK ADVISOR SAMPLE REPORT

Cybersecurity for Health Care Providers

How unified backup and cloud enable your digital transformation success

Table of Contents. Sample

TSC Business Continuity & Disaster Recovery Session

SOLUTION BRIEF RSA ARCHER BUSINESS RESILIENCY

What Does the Future Look Like for Business Continuity Professionals?

Integrating Cyber Security with Business Continuity Management to Build the Resilient Enterprise

ASSURING BUSINESS CONTINUITY THROUGH CONTROLLED DATA CENTER

BUSINESS CONTINUITY MANAGEMENT PROGRAM OVERVIEW

Next Generation Enterprise Network- Recompete (NGEN-R) Industry Day

Contingency Planning

EMERGENCY SUPPORT FUNCTION (ESF) 13 PUBLIC SAFETY AND SECURITY

Continuity of Business

TEL2813/IS2820 Security Management

Business Continuity Policy

Any observations not included in this report were discussed with your staff at the informal exit conference and may be subject to follow-up.

Business Continuity Planning

Railroad Infrastructure Security

Making YOUR Organization More Efficient and Effective Through Business Continuity / Continuity of Operations Planning

Doug Couto Texas A&M Transportation Technology Conference 2017 College Station, Texas May 4, 2017

Chapter 1. Chapter 2. Chapter 3

Role of BC / DR in CISRP. Ramesh Warrier Director ebrp Solutions

DISASTER RECOVERY PRIMER

Infocomm Professional Development Forum 2011

Cyber Resilience. Think18. Felicity March IBM Corporation

Florida State University

112 th Annual Conference May 6-9, 2018 St. Louis, Missouri

Brussels. Cyber Resiliency Minimizing the impact of breaches on business continuity. Jean-Michel Lamby Associate Partner - IBM Security

Keeping it Simple Driving BCM Program Adoption Through Simplification

Frontiers of Risk. Don t Be Afraid: Business Continuity Plan Development Only Hurts A Little!

Please indicate below the principle nature of your department s operations (check all that apply): Student life support.

Any observations not included in this report were discussed with your staff at the informal exit conference and may be subject to follow-up.

Summary of Cyber Security Issues in the Electric Power Sector

Introduction. Overview. Every Crisis Management Team Needs a Critical Decision Checklist. Presented by Roseanne Rostron, CBCP President Raido Response

Member of the County or municipal emergency management organization

CCISO Blueprint v1. EC-Council

Florida Government Finance Officers Association. Staying Secure when Transforming to a Digital Government

IT SECURITY RISK ANALYSIS FOR MEANINGFUL USE STAGE I

Implementing a Global Business

Contents. Chapter 3: Chapter 4: Critical Server Ranking Classifying Systems for Recovery Priority Mission-Critical Only, Please...

You ve been breached: Now What? Minnesota s Data Breach Preparation and Notification for Electronic Data

Build a viable plan for disaster recovery and crisis management.

Disaster recovery strategic planning: How achievable will it be?

Public Safety Canada. Audit of the Business Continuity Planning Program

Disaster Recovery and Mitigation: Is your business prepared when disaster hits?

COMMUNICATIONS EMERGENCY SUPPORT FUNCTION (ESF #2) FORMERLLY COMMUNICATIONS AND WARNING

BUSINESS CONTINUITY. Topics covered in this checklist include: General Planning

FEMA Update. Tim Greten Technological Hazards Division Deputy Director. NREP April 2017

Overview of the Federal Interagency Operational Plans

Function Category Subcategory Implemented? Responsible Metric Value Assesed Audit Comments

NORTH AMERICAN SECURITIES ADMINISTRATORS ASSOCIATION Cybersecurity Checklist for Investment Advisers

2018 WTA Spring Meeting Are You Ready for a Breach? Troy Hawes, Senior Manager

Subject: Audit Report 18-84, IT Disaster Recovery, California State University, Sacramento

Business Continuity Plan

RUAG Cyber Security Understand Cyber. Protect Values.

Maintaining Resiliency Within the Defense Industrial Base Through Preparedness Response and Recovery

Data Recovery Policy

South East Region THIRA

The Office of Infrastructure Protection

University Information Systems. Administrative Computing Services. Contingency Plan. Overview

Our key considerations include:

STRATEGIC PLAN. USF Emergency Management

Cyber resilience, information security and operational continuity

Business Continuity Plan Executive Overview

Security Guideline for the Electricity Sector: Business Processes and Operations Continuity

Internet of Things Toolkit for Small and Medium Businesses

3.4 DISASTER RECOVERY (L , M.3.9, comp_req_id 806)

SOLUTION BRIEF RSA ARCHER IT & SECURITY RISK MANAGEMENT

2013 STRATEGIC PLANNING SCHEDULE

WHITE PAPER OCTOBER 2017 VMWARE ENTERPRISE RESILIENCY. Integrating Resiliency into Our Culture and DNA

Prepare your Emergency respons, continuity plan, recovery plan

6/21/2013. The Business Risk of NOT Considering a Cloud/Managed IT Services Strategy. Christian Brothers Information & Technology Services

Keys to a more secure data environment

Dell helps you simplify IT

Disaster Recovery Planning: Is Your Plan in Place? Presented by: Steve Shofner, CISA, CGEIT

EARTH Ex 2017 Middle Planning Conference

L18: Integrate Control Disciplines to Increase Control and Save Money

CompTIA Mobility+ Certification

Are Traditional Disaster Recovery Plans Still Relevant? Bobby Williams, MBCP, MBCI Director, IT Resiliency Planning Fidelity Investments

How ISO helps organisation to achieve operational readiness Ong Liong Chuan 26 Apr 2016

NEN The Education Network

Next Generation Distribution Automation Phase III, Intelligent Modern Pole (IMP) Field Demonstration

AUDIT UNITED NATIONS VOLUNTEERS PROGRAMME INFORMATION AND COMMUNICATION TECHNOLOGY. Report No Issue Date: 8 January 2014

The NIS Directive and Cybersecurity in

NATIONAL CAPITAL REGION HOMELAND SECURITY STRATEGIC PLAN SEPTEMBER 2010 WASHINGTON, DC

External Supplier Control Obligations. Cyber Security

Section One of the Order: The Cybersecurity of Federal Networks.

Disaster Recovery Self-Audit

Transcription:

Business Continuity Planning Keeping Pace with New Technology

Old issues, new threats Force Majeure Increasing severe weather incidents, terrorist attacks Legacy modernization Cutover issues, system crashes, corrupt data Cyber attacks Denial of service, ransom ware

Business Continuity Planning (BCP), Continuity of Operations Plan (COOP) and IT Disaster Recovery (ITDR) are critical to minimize business disruption and negative impact on client services in times of crisis. Key components include: Evaluation of risk Business impact analysis Business Continuity Planning is the key Coordination and management to recover technology & operations Questions you need to ask yourself: When was the last time you updated your BCP? Are you prepared for a cyber attack? How does cloud fit into your ITDR strategy?

How can jurisdictions stay on top of these changes? Conduct vulnerability assessments of state-wide networks, systems and data. Identify exposures and define mitigation strategies New technology = New risks Cloud, mobility, connected vehicles, modern systems As jurisdictions become more reliant on technology, they should plan on how to operate when its not there! Emphasis is on maintaining the plan; implementing protection methods; training, testing, and exercising; and mitigating risks. Technology can help by providing remote means to collaborate, test & train. 3 Key areas of focus New technology & new business continuity planning assumptions Rethinking IT disaster recovery Review of emergency & incident management plans

New technology -> New BCP assumptions Each operational unit must constantly asses the impact of new technology: Will the recovery times be modified? Will the unique requirements affecting operations be adequate? Is there a process to restore essential functions? What is the agency depending on and what if its not there? Identify procedures, priorities, and resources (personnel, facilities and equipment): Which tools will improve the ability to continue operations? Identify an alternate work area: Which mobile communication options (e.g. hotspots and portable equipment) can be used to continue operations?

Rethinking IT disaster recovery IT DR plan and cloud technology will require reassessment of risks, timelines and procedures Update risk plan to reflect the new risks introduced Re-align services and protocols Update recovery timelines and procedures Update routing tables, IP addresses, VPN, web portals Well defined outage scenarios, situation and assumptions Network communications - availability Alternative recovery points, redundancy and out of band Alternate locations - Cloud, regional/internal or hybrid

Emergency & incident management Emergency/Incident response operations Test interoperability with other agencies in a unified command structure Link agencies together using common protocols Identifying an alternate work area Include mobile communication options such as hotspots and portable equipment Develop basic equipment lists Work from home provisions Define workarounds Communication Plan - Communication paths, reports, schedules, interoperability Automate employee notification Setup shared work areas using tools such as SharePoint

Checklist to ensure business continuity Develop teams that are charged with periodic reviews of Disaster Recovery, Continuity of Operations and Emergency Management Refresh in order to take advantage of the business process improvements and service delivery efficiencies that come with advances in the technology Complete an updated list of all Agency staff with contact information and summary of individual skills Keep the contact list of Agency Business Partners and third party service providers updated New technology provides enabling tools; It s the people who make them work

Contact information For More Information Contact: Nicholas Demetriades Senior Principal, Infosys Public Services Nicholas.Demetriades@infosys.com 860 9674 830

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback