If you are responsible for the business continuity then you will probably be confused by such terms as business continuity, disaster recovety, contingency planning and so on. At least, you will be at the initial stage. Let's go over the details. I could recommend to use NIST Special Publication 800-34 Rev. 1 "Contingency Planning Guide for Federal Information Systems".
Continuity planning normally applies to the mission/business itself; it concerns the ability to continue critical functions and processes during and after an emergency event.
Contingency planning normally applies to information systems, and provides the
steps needed to recover the operation of all or part of designated information systems at an existing or
new location in an emergency.
Business Continuity Plan (BCP)
The BCP focuses on sustaining an organization’s mission/business processes during and after a
disruption. An example of a mission/business process may be an organization’s payroll process or
customer service process.
Continuity of Operations (COOP) Plan
COOP focuses on restoring an organization’s mission essential functions (MEF) at an alternate site and performing those functions for up to 30 days before returning to normal operations. Additional functions, or those at a field office level, may be addressed by a BCP.
Crisis Communications Plan
Organizations should document standard procedures for internal and external communications in the event of a disruption using a crisis communications plan.
Critical Infrastructure Protection (CIP) Plan
Critical infrastructure and key resources (CIKR) are those components of the national infrastructure that are deemed so vital that their loss would have a debilitating effect of the safety, security, economy, and/or health of the United States.A CIP plan is a set of policies and procedures that serve to protect and recover these national assets and mitigate risks and vulnerabilities.
Cyber Incident Response Plan
The cyber incident response plan establishes procedures to address cyber attacks against an
organization’s information system(s).
Disaster Recovery Plan (DRP)
The DRP applies to major, usually physical disruptions to service that deny access to the primary facility infrastructure for an extended period. A DRP is an information system-focused plan designed to restore operability of the target system, application, or computer facility infrastructure at an alternate site after an emergency. The DRP may be supported by multiple information system contingency plans to address recovery of impacted individual systems once the alternate facility has been established.
Information System Contingency Plan (ISCP)
An ISCP provides established procedures for the assessment and recovery of a system following a system disruption. The ISCP provides key information needed for system recovery, including roles and responsibilities, inventory information, assessment procedures, detailed recovery procedures, and testing of a system.
The ISCP differs from a DRP primarily in that the information system contingency plan procedures are developed for recovery of the system regardless of site or location. An ISCP can be activated at the system’s current location or at an alternate site. In contrast, a DRP is primarily a site-specific plan.
Occupant Emergency Plan (OEP)
The OEP outlines first-response procedures for occupants of a facility in the event of a threat or incident to the health and safety of personnel, the environment, or property. Such events include a fire, bomb threat, chemical release, domestic violence in the workplace, or a medical emergency.
Continuity planning normally applies to the mission/business itself; it concerns the ability to continue critical functions and processes during and after an emergency event.
Contingency planning normally applies to information systems, and provides the
steps needed to recover the operation of all or part of designated information systems at an existing or
new location in an emergency.
Business Continuity Plan (BCP)
The BCP focuses on sustaining an organization’s mission/business processes during and after a
disruption. An example of a mission/business process may be an organization’s payroll process or
customer service process.
Continuity of Operations (COOP) Plan
COOP focuses on restoring an organization’s mission essential functions (MEF) at an alternate site and performing those functions for up to 30 days before returning to normal operations. Additional functions, or those at a field office level, may be addressed by a BCP.
Crisis Communications Plan
Organizations should document standard procedures for internal and external communications in the event of a disruption using a crisis communications plan.
Critical Infrastructure Protection (CIP) Plan
Critical infrastructure and key resources (CIKR) are those components of the national infrastructure that are deemed so vital that their loss would have a debilitating effect of the safety, security, economy, and/or health of the United States.A CIP plan is a set of policies and procedures that serve to protect and recover these national assets and mitigate risks and vulnerabilities.
Cyber Incident Response Plan
The cyber incident response plan establishes procedures to address cyber attacks against an
organization’s information system(s).
Disaster Recovery Plan (DRP)
The DRP applies to major, usually physical disruptions to service that deny access to the primary facility infrastructure for an extended period. A DRP is an information system-focused plan designed to restore operability of the target system, application, or computer facility infrastructure at an alternate site after an emergency. The DRP may be supported by multiple information system contingency plans to address recovery of impacted individual systems once the alternate facility has been established.
Information System Contingency Plan (ISCP)
An ISCP provides established procedures for the assessment and recovery of a system following a system disruption. The ISCP provides key information needed for system recovery, including roles and responsibilities, inventory information, assessment procedures, detailed recovery procedures, and testing of a system.
The ISCP differs from a DRP primarily in that the information system contingency plan procedures are developed for recovery of the system regardless of site or location. An ISCP can be activated at the system’s current location or at an alternate site. In contrast, a DRP is primarily a site-specific plan.
Occupant Emergency Plan (OEP)
The OEP outlines first-response procedures for occupants of a facility in the event of a threat or incident to the health and safety of personnel, the environment, or property. Such events include a fire, bomb threat, chemical release, domestic violence in the workplace, or a medical emergency.
Now it is known to me that articles is nothing but inspiring is everything to do something great. This is a great article for the people who want to come in freelancing.
ReplyDeletebackup and disaster recovery plan