"Health Check"– Continuity Management >
A review of the company / organization the status of Business Continuity Management based on current and future standards [ISO 27001, ISO 25999 and ISO 25777].
The screening can be done either as a formal audit, but can also be done as a "health check", to enable management to quickly acquire an image of status.
It is possible to achieve "compliance" without there being an interruption protection that really works.The "Health Check" is to try to reach past the handling, which only works "on paper".
Business Impact Analysis >
Business Impact Analysis–BIA–is a tool, used to identify how operations are affected by different types of disturbances.
The analysis is done in part without regard to the likelihood of a particular event. Maximum acceptable downtime for your business processes are mapped and translated into demands for återstartstid for functions, which support the processes. In many cases, IT with the conditions for business processes to function. In these cases, describes requirements for restarting times and the loss of data that can be accepted at the different types of interruptions.
Risk Analysis >
Unlike the "impact assessment", so working with risk analysis, threat and likelihood of various events.This leads to a number of events with higher probability can be taken care of business safety.
Risk analysis can also be used to spot holes in some 'random' risk. For deeper analysis, it turns out often that "chance" has been used as a label for the events not been analyzed enough. The analysis may show that it is possible to eliminate risk entirely, where its mechanisms elucidated a few additional steps
Process Review (ITIL) >
IT-dependent businesses can "check-ups" supplemented by a review process based on ITIL or equivalent regulations apply.
The review assumes that the processes of "Change Management", "Configuration Management", "Incident Management", "Problem Management", etc. to deal with continuity protection, so that changes in the IT environment directly affects continuity management and to disturbances that affect the operation as soon as possible will lead to improvements in management.
Continuity Strategy >
On the basis of the study are continuity strategies selected for the different parts of the operation.
As the development in the area is towards managing all types of continuity requirements in a uniform manner, ie, daily interruption and extremes in the form of "disaster", should be treated in a manner that is built into processes and IT systems, so must be continuity issues with the beginning of the design of processes and their support systems.
IT-intensive activities are often applied ITIL. The version of ITIL V3 is the logical process, called "IT Service Continuity" is now placed in the field "Service Design"
Continuity Planning >
The continuity functions are primarily built into the daily operational procedures. In the IT context, much of the functionality included in operating procedures. If a server room knocked out, so is restarted each server in the same manner as if a new server installed with the difference that a priority of work must be done so that the most business-critical systems be restarted first.
To cope with such restarting of many servers at the same time requires planning, drill and tools. There is no good having a list of systems and servers, which are, or at worst, was found six months ago.
Dealing with loss of IT resources is facilitated by the availability of virutella solutions.
Planning and Execution of Tests >
The parts of the continuity solutions, which are not automatically tested by being included in the daily production, must necessarily be tested.
No test - no solution. There are two parallel services complex, so must solutions where one complex is down, we implemented a disaster.
Synchronization of mirrored disks after an interruption of one must be tested. Restarting from another type of backup must also be tested.
Planning and Execution of Continuity Exercises >
Continuity Practice is designed to trim the manual procedures, as part of continuity exercises. In many cases, continuity tests combined with exercise moments, but there are drill torque ", which may be tested separately.
Planning and Execution of Crisis Management Exercises >
Interruption, where the impact on business is serious and where media interest is often highly processed in crisis management plans, which are part of the continuity of management.
The REGA-Method for Concentrated Implementation of Continuity Projects >
Continuity Planning Projects tend to be prolonged. Often, many people involved, and it is difficult to obtain appointments.
With the help of REGA method implemented business continuity planning project in a concentrated form of seminars. Those working in the project is under a number of days in a project room. Policymakers need not attend the seminar but must commit to be available for adoption.