“The events of September 11, 2001 were a drastic reminder to all companies that Business Contingency Planning (BCP) should not be disregarded. According to the Info Security News Magazine (2000), an effective BCP and disaster recovery plan can reduce losses by 90% in the event of an incident. According to another study 81% of CEOs indicated their company plans would not be able to cope with a catastrophic event like the 9-11 attacks.”
Business Continuity Planning (BCP) is about making the plans and creating the framework to ensure that the business can continue in an emergency. The aim of BCP is to minimize the effects of a disruptive event on business. It further reduces the risk of financial loss and enhances the organizational capability to recover from disruptive events promptly.
Disaster Recovery Planning (DRP) is about quickly recovering from an emergency with the minimum of impact to the organization. DRP provides a comprehensive statement of actions to be taken before, during and after a disruptive event that causes a significant loss of information systems resources.
A BCP/DRP implementation provides the following benefits;
- It makes organization more robust and resilient;
- Develop confidence of stakeholders and investors in the organization
- Helps protect organization's image, brand, and reputation
- Significantly reduces loses if you ever hit by disaster
Although a part of an Information Security Management System according to ISO27001 Standard, the importance and significance of BCP and DRP led to the development and establishment of a special independent Standard. We make use of the BSI standard BS25999 for the implementation of BCP/DRP. Adoption of industry standard ensures that organizations make optimum use of resources in case of adverse events or disasters.
|
