SOLUTION BRIEF RSA ARCHER BUSINESS RESILIENCY

Similar documents
INTELLIGENCE DRIVEN GRC FOR SECURITY

SOLUTION BRIEF RSA ARCHER IT & SECURITY RISK MANAGEMENT

MITIGATE CYBER ATTACK RISK

SYMANTEC: SECURITY ADVISORY SERVICES. Symantec Security Advisory Services The World Leader in Information Security

FOR FINANCIAL SERVICES ORGANIZATIONS

Enterprise GRC Implementation

Integrating Cyber Security with Business Continuity Management to Build the Resilient Enterprise

TSC Business Continuity & Disaster Recovery Session

RSA Solution Brief. Managing Risk Within Advanced Security Operations. RSA Solution Brief

RSA Advanced Cyber Defence Summit

RSA Solution Brief. The RSA Solution for Cloud Security and Compliance

SOLUTION BRIEF HELPING BREACH RESPONSE FOR GDPR WITH RSA SECURITY ADDRESSING THE TICKING CLOCK OF GDPR COMPLIANCE

Canada Highlights. Cybersecurity: Do you know which protective measures will make your company cyber resilient?

Helping the C-Suite Define Cyber Risk Appetite. The executive Imperative

Disaster recovery strategic planning: How achievable will it be?

DATA SHEET RISK & CYBERSECURITY PRACTICE EMPOWERING CUSTOMERS TO TAKE COMMAND OF THEIR EVOLVING RISK & CYBERSECURITY POSTURE

Why you should adopt the NIST Cybersecurity Framework

Appendix 3 Disaster Recovery Plan

Building a BC/DR Control Library and Regulatory Response Program

Business continuity management and cyber resiliency

Business continuity and resiliency services from IBM

SOLUTION BRIEF RSA SECURID SUITE ACCELERATE BUSINESS WHILE MANAGING IDENTITY RISK

A Model for Resilience

Achieving effective risk management and continuous compliance with Deloitte and SAP

Session 5: Business Continuity, with Business Impact Analysis

Continuous protection to reduce risk and maintain production availability

Information Infrastructure and Security. The value of smart manufacturing begins with a secure and reliable infrastructure

Business Continuity Management

Data Governance Data Usage Labeling and Enforcement in Adobe Experience Platform

Cyber Resilience. Think18. Felicity March IBM Corporation

BUSINESS CONTINUITY MANAGEMENT PROGRAM OVERVIEW

WHITE PAPER OCTOBER 2017 VMWARE ENTERPRISE RESILIENCY. Integrating Resiliency into Our Culture and DNA

Business Continuity Planning

RSA RISK FRAMEWORKS MAKING DIGITAL RISK MANAGEABLE

RSA IT Security Risk Management

Cyber Incident Response. Prepare for the inevitable. Respond to evolving threats. Recover rapidly. Cyber Incident Response

Facilities Management and Business Continuity. 10 May 2017

Demystifying GRC. Abstract

RUAG Cyber Security Understand Cyber. Protect Values.

Sustainable Security Operations

Cyber Risk Program Maturity Assessment UNDERSTAND AND MANAGE YOUR ORGANIZATION S CYBER RISK.

BUILDING CYBERSECURITY CAPABILITY, MATURITY, RESILIENCE

CYBER RESILIENCE & INCIDENT RESPONSE

Data Governance: Data Usage Labeling and Enforcement in Adobe Cloud Platform

Are we breached? Deloitte's Cyber Threat Hunting

How to Conduct a Business Impact Analysis and Risk Assessment

BPS Suite and the OCEG Capability Model. Mapping the OCEG Capability Model to the BPS Suite s product capability.

How ISO helps organisation to achieve operational readiness Ong Liong Chuan 26 Apr 2016

RSA Advanced Security Operations Richard Nichols, Director EMEA. Copyright 2015 EMC Corporation. All rights reserved. 1

CYBER SECURITY TAILORED FOR BUSINESS SUCCESS

Incident Response Services to Help You Prepare for and Quickly Respond to Security Incidents

Business continuity and resiliency services from IBM

Risk Advisory Academy Training Brochure

ACCENTURE & COMMVAULT ACCENTURE CLOUD INNOVATION CENTER

DATA SHEET RSA NETWITNESS PLATFORM PROFESSIONAL SERVICES ACCELERATE TIME-TO-VALUE & MAXIMIZE ROI

Implementing a Global Business

Continuity of Business

OPERATIONAL RISK MANAGEMENT: A GUIDE TO HARNESS RISK WITH ENTERPRISE GRC

Disaster Recovery Is A Business Strategy

HCL GRC IT AUDIT & ASSURANCE SERVICES

IBM Global Technology Services December 2008 Business continuity and resiliency services from IBM

Build a viable plan for disaster recovery and crisis management.

Introduction to Business Continuity Management

A Practical Guide to Efficient Security Response

CA Security Management

MATURE YOUR CYBER DEFENSE OPERATIONS with Accenture s SIEM Transformation Services

Cybersecurity. Securely enabling transformation and change

SECURITY SERVICES SECURITY

Explore Resilience and Risk Management Around the World

A Disciplined Approach to Cyber Security Transformation

Canada Life Cyber Security Statement 2018

Business Continuity Management: How to get started. Presented by: Tony Drewitt, Managing Director IT Governance Ltd 19 April 2018

Best Practices in Securing a Multicloud World

Demystifying Governance, Risk, and Compliance (GRC) with 4 Simple Use Cases. Gen Fields Senior Solution Consultant, Federal Government ServiceNow

TAKING COMMAND OF YOUR GRC JOURNEY WITH RSA ARCHER

Role of BC / DR in CISRP. Ramesh Warrier Director ebrp Solutions

Symantec Data Center Transformation

Addressing Vulnerabilities By Integrating Your Incident Response Plans. Brian Coates Enaxis Consulting

EQUINIX BUSINESS CONTINUITY ADVANCED SERVICES KEEP YOUR BUSINESS UP AND RUNNING

RSA Cybersecurity Poverty Index : APJ

ISO STANDARD IMPLEMENTATION AND TECHNOLOGY CONSOLIDATION

SOLUTION BRIEF RSA NETWITNESS NETWORK VISIBILITY-DRIVEN THREAT DEFENSE

3.4 DISASTER RECOVERY (L , M.3.9, comp_req_id 806)

ICBA Summary of FFIEC Cybersecurity Assessment Tool (May 2017 Update)

RSA INCIDENT RESPONSE SERVICES

Run the business. Not the risks.

RSA NetWitness Suite Respond in Minutes, Not Months

Business Continuity and Disaster Recovery

Business Continuity Planning Keeping Pace with New Technology

DEVELOP YOUR TAILORED CYBERSECURITY ROADMAP

CYBERSECURITY FOR STARTUPS AND SMALL BUSINESSES OVERVIEW OF CYBERSECURITY FRAMEWORKS

Cisco Start. IT solutions designed to propel your business

Our key considerations include:

Protecting your data. EY s approach to data privacy and information security

Dell EMC Isolated Recovery

L18: Integrate Control Disciplines to Increase Control and Save Money

BCM s Role in Effective Risk Management: A Risk Manager s Point of View

BUSINESS CONTINUITY MANAGEMENT

GOVERNANCE, RISK MANAGEMENT AND COMPLIANCE TRENDS BY FCPAK ERIC KIMANI

Sage Data Security Services Directory

Transcription:

RSA ARCHER BUSINESS RESILIENCY

INTRODUCTION Organizations are becoming a complex tapestry of products and services, processes, technologies, third parties, employees and more. Each element adds another level of complexity, which in turn magnifies the fragility and complexity of your business processes, critical IT, infrastructure and ever-growing third party relationships. And your business is continually evolving. New relationships are created and new services are offered, which require business and IT infrastructure to support. This changing ecosystem impacts your ability to maintain resiliency in the face of disruption, whether it is a major natural event, a reputational crisis or a cyber-attack. In addition, the complexity makes it more difficult to clearly see where risks are, where they are emerging, and at what velocity risks could affect the resiliency of the organization. Critical business functions and supporting infrastructure should be designed both to withstand disruptions, and to enable quick recovery or restoration if they fail. Business continuity (BC) and IT disaster recovery (DR) plans go a long way in ensuring that critical business and IT functions continue to operate or can be recovered to an operational state within an acceptable amount of time if a crisis occurs. However, managing the myriad of plans for all of these complex processes, systems, suppliers and more is complicated. Business continuity management teams usually capture static BC/DR plan documentation in multiple tools and inflexible systems that are costly to customize and upgrade. What s more, there are often uncoordinated, ad hoc processes for creating, approving, maintaining, and testing plans. With limited coordination among BC, DR and crisis teams, there is often little visibility into new or emerging IT or business risks that may impact the continuity or resilience of your organization s standard operations. As a result, it is difficult to prove and report to your senior management that continuity and recovery plans are in place and will work as intended. TRANSFORM RECOVERY TO A RESILIENCY MINDSET Recovery implies that the business has made reactive plans to restore needed services after bad things happen. Conversely, resiliency programs are designed to address and mitigate systemic risk to the continuity of your organization in addition to maintaining recovery plans. Resiliency requires building processes that naturally adapt to adverse conditions, make midcourse corrections, and avoid the negative impacts of a disruption. A successful business resiliency program aligns your business impact analysis, business continuity planning, IT disaster recovery planning, crisis planning and incident response activities with objectives and strategies of the business as a whole. 2

Now more than ever, your organization needs business continuity and disaster recovery teams to work closely to create a more resilient organization and minimize the impact of any disruption to your organization s reputation, finances, legal status, employees or customers. And senior management needs a better understanding of continuity risks, insight into needed budget requirements, and a level of confidence that plans are in place if a crisis should occur. THE RSA ARCHER BUSINESS RESILIENCY ADVANTAGE RSA Archer Business Resiliency provides an automated approach to planning and recovery, allowing you to respond swiftly in crisis situations to protect your ongoing operations. With RSA Archer, you can transform the efficiency of your resiliency and recovery teams, address the most critical areas of the business quickly, and partner across the business to achieve your organization s resiliency goals. BRING BUSINESS CONTEXT TO CONTINUITY AND RECOVERY PLANNING How do you know what is most critical to your business? Which business processes are most critical for you to ensure they are resilient? What are the upstream and downstream dependencies, systems and processes, and how does your team plan for them? These critical questions must be assessed in concert with an understanding of business criticality and corresponding recovery priorities. RSA Archer offers a centralized business process and asset repository tied to the supporting IT infrastructure. This enables management to catalog and better understand the context of the organization, assess the criticality of each process and supporting technologies and infrastructure, prioritize the BC/DR planning process based on criticality, and then put recovery plans in place. INTEGRATE INCIDENT AND CRISIS RESPONSE Muddling through a crisis event and being saved by heroic efforts is not the type of experience your team wants to experience, much less repeat. Continuity and recovery professionals must adequately plan for and proactively build steps to manage incidents as they arise into the organization s processes, and effectively deal with crisis events to bring them to swift and successful resolution. Bringing the resiliency program together managing day-to-day incidents or planning and testing for crisis events, your programs must include a cycle for learning and improving processes. With RSA Archer, you can more effectively keep your resiliency program in line with changes within your organization, new or changing regulations, and new business, building resiliency into the very processes you perform. 3 ADAPT YOUR RESILIENCY PROGRAM Businesses are fluid and prone to changes, and priorities need to be evaluated on a regular basis. Why shouldn t resiliency planning and execution follow the same pattern? The ISO 22301 standard recommends developing a resilient

We identified a list of required capabilities for our BCM solution and then compared them one-by-one against our existing solution and against RSA Archer. RSA Archer won hands down. It offered a number of capabilities such as inclusion of vendor contacts lists, availability of supporting documentation, and plan ownership and approval assignment that our existing platform either poorly supported or did not support at all. The business has experienced a number of benefits since the solution was implemented, including an estimated $36,000 OPEX savings over three years, as well as full synergy with Equifax s Enterprise Risk Management objectives. The cross-pollination of data we can now achieve allows multiple organizations to leverage the same data sets, and we ve made substantial progress in increasing our BC/DR maturity level, which is now measurable and repeatable. Global Business Continuity Manager Equifax 4 organization in line with business priorities and strategic objectives in a way that is flexible enough to adapt and react to changing priorities. With RSA Archer, you can build your resiliency program on the most configurable software in the industry. You can tailor continuity, recovery and response processes, add new workflow, and program new reports while maintaining your approaches and taxonomies. RSA Archer s flexible platform allows you to easily expand your current continuity and recovery use cases with no custom code or professional service requirements. And the RSA Archer Business Resiliency solution uses a standards-based approach that aligns with the ISO 22301 international standard for BC planning. RSA ARCHER BUSINESS RESILIENCY RSA Archer Business Resiliency provides an automated approach to business continuity and disaster recovery planning and execution, allowing swift response in crisis situations to protect your ongoing operations. With RSA Archer, you can assess the criticality of business processes and supporting technologies, and develop detailed business continuity and disaster recovery plans using an automated workflow for plan testing and approval. Key dashboards and reports provide visibility to your senior management providing a better understanding of resiliency risks, insight into needed budget requirements, and a level of confidence that a solid resiliency program is in place if a crisis occurs. RSA Archer Business Resiliency provides several use cases to meet your specific business needs and progress in the business resiliency maturity journey, including the following. BUSINESS IMPACT ANALYSIS To understand the criticality of business processes in any organization, you must develop business impact analyses. RSA Archer Business Impact Analysis (BIA) is designed to help you determine the criticality of business processes so they can be prioritized and sequenced for recovery planning and building resiliency measures. Campaign capabilities enable you to automatically update or create BIAs across sets of business processes that support a certain product or service, or with particular business units or other organizations. The use case provides out-of-the-box workflow to drive updates through your business process owners, with built-in approval, monitoring, notification and reporting across all users. You can share information with interdependent teams across the organization to help align your business continuity, IT disaster recovery, and crisis teams so everyone has the same planning and recovery priorities. INCIDENT MANAGEMENT RSA Archer Incident Management provides a case management and incident response solution for reporting and categorizing events such as cyber, ethics violations and physical incidents. The use case enables you to quickly evaluate

the criticality of an incident, determine the appropriate response procedures, and assign response team members based on factors like business impact and regulatory requirements. Incident Management also integrates with the Crisis Management use case to seamlessly handle incidents that turn into crises. The use case also includes dashboards for tracking and reporting on costs, related incidents, losses and recovery. BUSINESS CONTINUITY AND IT DISASTER RECOVERY PLANNING RSA Archer Business Continuity and IT Disaster Recovery Planning offers a coordinated, consistent, and automated approach to business continuity and IT disaster recovery planning, testing and execution. It allows you to respond swiftly in crisis situations to protect your ongoing operations. Organizations can also use the RSA Archer BCM mobile application to view business or IT recovery plans, strategies and tasks, and recovery requirements according to user role. This decreases dependency on hard copy plans and enables faster response to crisis events. CRISIS MANAGEMENT RSA Archer Crisis Management provides a coordinated, consistent, and automated approach for swift response in crisis situations to protect your ongoing operations. With RSA Archer, you can manage business continuity and disaster recovery, and align activated plans with the organization s crisis team activities to manage crisis events holistically. The solution also aligns risk assessment with other GRC disciplines and automates the process of testing business continuity, IT disaster recovery, and crisis plans for consistent crisis response to minimize risks. CONCLUSION Without a coordinated approach to business resiliency, organizations can suffer significant losses when critical business processes or IT infrastructure cannot be sustained or recovered quickly after a disruption. RSA Archer Business Resiliency provides a resiliency-driven approach to help your organization mature from just reactive business and IT recovery objectives to a proactive posture that enables your team to significantly reduce the effects of disruptions to your business. With RSA Archer, you can transform the efficiency of your resiliency team to protect your critical business operations. 5

6 RSA and the RSA logo, are registered trademarks or trademarks of Dell Technologies in the United States and other countries. Copyright 2017 Dell Technologies. All rights reserved. Published in the USA. 10/17 Solution Brief H13886-1 RSA believes the information in this document is accurate as of its publication date. The information is subject to change without notice.

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback