(including risk management, disaster recovery planning and security management)
Business Continuity Planning is performed by an organization to ensure critical business functions will be available to internal and external customers, suppliers, and all other entities that must have access to those functions. IT systems are one of those critical business functions. The IT activities include system backup and recovery, change control, security management, help desk, network management, configuration management, data management, project management and application architecture management. Business continuity is something that is not implemented at time of disaster, but the processes, policies and practices required to maintain service, consistency and recoverability. Different organizations have different recovery requirements and within that organization different processes require different recovery profiles.
Risk management is the identification and prioritization of business risk and the managed approach to minimize, monitor, and control the probability and/or impact of those risks. IT risk management is the methodology for identifying and prioritizing risk to achieving business continuity and taking prudent ($$) action to minimize that risk. As such, risk management is a component of business continuity planning.
Disaster Recovery Planning (DRP) is the process, policies and procedures related to preparing for recovery or continuation of technology infrastructure critical to an organization after a natural or human-induced disaster. Disaster recovery is a subset of business continuity and takes its lead from risk management. While business continuity involves planning for keeping all aspects of a business functioning in the midst of disruptive events, disaster recovery focuses on the IT or technology systems that support business functions.
IBD practices business-driven IT, which in this case means that key business drivers dictate solution options. IBD will work with your business to define and implement a part, or all of Business Continuity Plan. IBD is well prepared to address the technology piece of the DRP architecture along with the need to understand the business requirements (mean time to recover, critical applications, budget, risk, security requirements, etc) to provide a solid analysis and recommendation on current strategy. IBD is even capable of helping to implement those recommendations approved by their client. IBD practices business-driven IT, which equates to the right technology to match business need.
Click here to learn more about Security Management, or to take advantage of IBD's Free offer of a information technology assessment profile.