Transcript: What is Business Continuity Plan BCP Life cycle BCP is a plan that requires us to be always ready ...... Business Continuity Plan Importance of Business Continuity Plan CONTENT jhdskjfhdskjfh How to work during a BCP
Transcript: Analytical Research Laboratories The end. ARL + DNA DNA Solutions + Data Center | Dallas, TX Business Continuity Plan Office Space not required CoreXchange vs Nature Why not OK? + A local disaster could affect a local data center OKC & Tulsa rates are around $800/month Minimized Cost Data Center Storage From $30,000 to $6,800 for replication hardware + Bandwidth $299 / month Business Continues: 100% Off Site Data Replication Remote VPN failover
Transcript: The implementation phase involves policy changes, material acquisitions, staffing and mock testing Technical aspects of BCP Biannual or annual maintenance cycle maintenance of a BCP manual is broken down into three periodic activities. Confirmation of information in the manual, roll out to staff for awareness and specific training for critical individuals. Testing and verification of technical solutions established for recovery operations. Testing and verification of organization recovery procedures. multiple firewalls within and outside the cloud and servers Conduct Validation Exercises Desktop walk-thru or more Realistic simulation || “fire drill” Pre-exercise brief, audit the process, document progress, allow participant feedback, and debrief Business Contingency at Croods, Inc, - Why? Business Contingency Plan Business processes have to continuously evolve around the Crood's risk management framework The planning phase brings together multiple people within Croods who help design the plan Application security and service patch distribution Hardware operability Application operability Data verification Data application If continuous monitoring and regular maintenance of patches are not updated, the contingency plan may fail due to a lack of resources, proper reporting, technology, and inability to follow through with plan procedures At Croods, Inc a BCP is essential to it's success therefore... Objective The purpose of testing is to achieve organizational acceptance that the solution satisfies the recovery requirements. Plans may fail to meet expectations due to insufficient or inaccurate recovery requirements, solution design flaws or solution implementation errors. The last step is to test the plan and maintain it with continuous monitoring Testing and organizational acceptance Risks: Contingency Planning requires companies to think about: Training Plan Design Implement Test A management process that provides the strategic and operational framework to review and, where appropriate, to (re-)design the way an organization provides its products and services while increasing its resilience to disruption, interruption, or loss. Definition: -To practice & enhance readiness to ensure Business continues regardless -To update & improve business continuity plans, recovery plans, and system recovery procedures Definition continued Then they design the plan framework in accordance with company policies and budgetary requirements Conclusion continuous monitoring Periodic presentations to team members, management, new employees Any event that could impact operations is included, such as supply chain interruption, loss of or damage to critical infrastructure (major machinery or computing/network resource). As such, risk management must be incorporated as part of BCP Maintenance what is a disaster? how much loss can be tolerate? what are my options? what will a recovery plan cost? how quick do i need to reestablish business functions? Testing may include: Crisis command team call-out testing Technical swing test from primary to secondary work locations Technical swing test from secondary to primary work locations Application test Business process test Enable your organization to survive a disaster and to resume normal business in the shortest time So... lets lay out the process at Croods Croods, Inc
Transcript: Involvement Senior Mangement Chief Information Officer (CIO) System and Information Owners Business & Functional Managers Information System Security Officer (ISSO) Forensic Investigator Legal Advisor Equipment Digital forensic workstation & backup devices Laptops Spare Workstations Blank removable media Portable Printer Packet Sniffers Digital forensic Software Removable Media Evidence Gathering Accessories Scanning of the system Unauthorized Users Password Strength Unauthorized Software Port Scan Email Scanning Anti-Virus Software Comapny can not be prepared for every disaster All area's of a company need to be in the know Having proper security features in place is key Need to have adequate processes and procedures Amanda Bauman Jacob Cruzan Lindsey Henry Sonia Kumar Investigation Introduction Forensic Response & Process Disaster Declared Critical Event Occurs Preparation Identification Containmen Eradication Recovery Begins Recovery Completed System Verified Business Resumes Lessons Learned Coordination Plan Forensic Response & Investigation Plan Coordination Plan Metrics Conclusion Risk Management Business Impact Analysis Mitigation Controls Testing/Exercises Metrics Conclusion Business Continuity Plan
Transcript: Assessment Actions BCP Committee CASE 1: If BROADBAND stick is available 1. Using Broadband stick, connect to the internet. Upon gaining connection, connect to head office via VPN. Proceed with the usual transaction flow. CASE 2: IF BROADBAND stick IS NOT available 1. Since FINACLE SYSTEM is web-based, buddy branch will take in place. 2. Designated personnel/s will go to its buddy branch. She/he will be the one posting all the transactions being made in the offline branch. NOTE: Doing transactions in buddy branch will not affect the balance of that branch. The system is designed to detect the assigned branch per user ID. Since the designated personnel will be using her/his user ID, all transactions made will still fall on the branch where that user ID is assigned. -:- If the estimated outage is less than 24 hours, recovery will be initiated under normal bank operational recovery procedures found in the BCP. -:- If the outage is estimated to be longer than 24 hours, then the duty person in the Data Center immediately alerts the BCP Head Coordinator to activate the BCP, which in turn notifies and gets approval from the Senior Officials (CEO or President of the Bank) for the BCP to be activated. The recovery process then moves into the back-up phase. -:-The BCPCom remains active until recovery is complete to ensure that the bank will be ready in the event the situation changes. Back to Operations Scenario#4: Head Office and Backup Site SERVERS are not accessible (worst case for IT system) Guidelines: CEO and President. Senior Management Officials of the Bank responsible for the overall direction, decision-making, and approvals required to implement the BCP. Test Objectives: • Determine the state of readiness of CSBI’s BCP by creating a learning environment so that all participants can learn about the plan. • Execute/Simulate the plan learned during the classroom exercise to verify the applicability of guidelines formulated for specified scenario/s. • Validate the BCP resource lists (people and inventories) are sufficient to effect recovery of business operations and/or IT services as appropriate. Document changes and updates (including omissions) to the BCP. • Verify the BCP is current and accurately reflects the Bank’s requirements. Business Impact Analysis (BIA) and Risk Assessment Summary Damage Assessment Represented by the IT Auditor or IAD Head. Shall document all the findings and provides support during the emergency. He shall also make recommendations on changes to the normal control procedures necessitated by the recovery process. The emergency phase begins with the initial response to a disaster. During this phase, the existing emergency plans and procedures of the bank with direct efforts to protect life and property, the primary goal of initial response. Security over the area is established as local support services such as the Police and Fire Departments are enlisted through existing mechanisms. The BCP Head Coordinator is alerted and will begin to monitor the situation. Network Recovery of Local and Wide Area Networks Represented by the IT Head. Shall coordinate support for system recovery and data processing resources at the main data center and designated recovery sites. She/he will also help GSD during damage assessment. -:- The time required for recovery of the functional area and the eventual restoration of normal processing depends on the damage caused by the disaster. -:- The time frame for recovery of IT Systems can vary from several days to several months. In either case, the recovery process begins immediately after the disaster and takes place in parallel with backup operations at the designated Alternate Site. -:-The primary goal is to restore normal operations as soon as possible. -:-The following procedures are for recovering the Information Technology Systems at the Alternate Site (Hot Site). Procedures are outlined below. Each procedure should be executed in the sequence it is presented in order to maintain efficient operations. BCP Head Coordinator shall request permission to enter site from Fire Department (if required) or appropriate agency handling the emergency situation. He shall take a General Services representative from each of the appropriate vendors, the insurance claims representative and Information Technology personnel into the site. Scope BCPCom will operate the continuity system in coordination with the system at the Original or New site. These procedures shall include testing the Original or new system until it is functioning properly and the continuity system is shut down gracefully. 1. BCPCom will do the following: a. Convene at the Head Office Conference Room. b. Coordinate security & operational conditions with the CSBI Executive Management Team(CEO and President), Damage Assessment Team(GSD, ITD, and LSCAD) and Security Office Note: See Annex D-2 for Damage Assessment Template c. If assessment met any of the criterions for BCP Activation, BCP Head
Transcript: ILE Case Study ILE case study BUSINESS CONTINUITY PLAN Risks training courses BLUE BEAR Student: Whose study in the college. To study Parents: The student’s family. To see they children’s learning. Customers: Who the college pay for them. To get money. Government : Who pay to the college. To get better future for the people. suppliers: Who provide service. To have good service. staff: Whose work in the college To get money 1- Poor internet: Business continuity management training ISO 22301 MEMBERS : 1- Poor internet Click this link : Put one wifi in each class room Try to check the internet work every 3 hours what kind of risks ILE faces: http://prezi.com/cs7flshvc_s2/?utm_campaign=share&utm_medium=copy HOW TO DOWNLOAD it Have another copy and save it in another place Use soft copy 3- AC problem Ghada Alqahtani Manar Alsohimee Munerah Alsaadi Monirah Aldossary Nourah Almubarak business company BCI introduction to business continuity management The Stakeholders It is a major supplier of employment and skills. It will see further 12 technical and vocational training institutions added to its existing campuses across KSA. It will improve customer service and strengthen the brand. BSI 2- Back for student work: Suggestions: 3- AC problem 2- backup for student work BC Training Group name: Lave each class control the AC on they on Or each teacher had the remote control add logo here
Transcript: What is Business Continuity Plan Business continuity is treated as a process, not a project Plans start simply and increase as teams gain confidence Governance and is provided for by Senior Management BCP Life cycle Phase I Phase II Phase III Preparedness Response Recovery BCP is very BC Rep sends the Notification Ownership taken over by the cutover location Identification of BCP resources Status of Critical tasks Repriortization of current tasks Frequent updates shared between locations CONTENT Importance of BCP A Proactive Process that identifies and priortizes critical functions and likely threats. Business Continuity Plan helps in identifying certain plans and procedures through trainings and maintenance. These management disciplines, processes and techniques provide business continuity for any critical business functions under unforeseen circumstances. These circumstances include Defining/Managing worst case scenarios Approving the funding and staffing of the company's BCP Plan. Organization’s senior management team is responsible for overseeing the business continuity planning process.It enhances our ability to avoid Interruptions to daily operations Financial losses Meeting client expectations How do we work as a team Content
Description: The sky’s the limit. Boost your new sales initiative into orbit with an engaging and compelling SKO presentation. This template features a effective sales kickoff theme that makes it easy to be engaging. Like all Prezi SKO templates, it’s fully customizable with your own information.
Description: Add some color to your quarterly business review with this vibrant business presentation template. The bold visuals in this business template will make your next QBR a memorable one.
Description: Storytelling is at the heart of great service. Use this stunning, customizable business presentation template to highlight employees who do exceptional work or position your customers as the heroes of your business.
Description: Catch the eye and engage the imagination with this cool-looking Prezi proposal template. The bold, bright design and highly dynamic theme all but guarantee success for your next sales or marketing proposal. All Prezi presentation templates are easily customized.
Now you can make any subject more engaging and memorable