Page 547 - ITGC_Audit Guides
P. 547

GTAG —  Table of Contents




                                                  Table of Contents


            1.    ExEcutivE SummAry  ........................................................................................................................................... 1

            2.    introduction ......................................................................................................................................................... 3
                  2.1   BCM Definition .................................................................................................................................................... 3
                  2.2   Crisis Management Planning  .............................................................................................................................. 3
                  2.3   Disaster Recovery of IT  ....................................................................................................................................... 3

            3.    Building A BuSinESS cASE ................................................................................................................................ 4

            4.    BuSinESS riSkS .......................................................................................................................................................... 5
                  4.1   Common Disaster Scenarios ................................................................................................................................. 5
                  4.2   Common Disaster Impacts .................................................................................................................................... 6


            5.    Bcm rEquirEmEntS ............................................................................................................................................... 7
                  5.1   Management Support ........................................................................................................................................... 7
                  5.2   Risk Assessment and Risk Mitigation .................................................................................................................. 8
                  5.3   Business Impact Analysis .................................................................................................................................... 10
                  5.4   Business Recovery and Continuity Strategy ....................................................................................................... 11
                  5.5   Disaster Recovery for IT ..................................................................................................................................... 12
                  5.6   Awareness and Training ..................................................................................................................................... 14
                  5.7   Maintenance of the BCM Program .................................................................................................................... 14
                  5.8   Exercise of the Business Continuity  .................................................................................................................. 15
                  5.9   Crisis Communications ...................................................................................................................................... 18
                  5.10   Coordination with External Agencies  ............................................................................................................... 18


            6.    EmErgEncy rESponSE ......................................................................................................................................... 19

            7.    criSiS mAnAgEmEnt ........................................................................................................................................... 20

            8.    concluSion/SummAry ...................................................................................................................................... 21

            9.    AppEndix ................................................................................................................................................................... 22
                  9.1   Sample BCP Audit Guide .................................................................................................................................. 22
                  9.2   BCM Standards and Guidelines ......................................................................................................................... 22
                  9.3   BCM Capability Maturity Model ....................................................................................................................... 23

            10.   gloSSAry ................................................................................................................................................................... 32

            11.   ABout thE AuthorS .......................................................................................................................................... 33
   542   543   544   545   546   547   548   549   550   551   552