Business Continuity Policy

 

Policy No:  1.04                                                                                              Printable Version 

 

PURPOSE

 

The purpose of the Business Continuity Policy sets out the policies that will ensure The Fake Chicken Company business will continue in the event that its computer systems and networks are affected by a security incident.

 

SCOPE

 

This policy affects all users of computer systems and networks owned or managed by The Fake Chicken Company.

 

POLICIES 

1.      USER RESPONSIBILITIES

1.1    User Participation

 

1.1.1   Users of computer systems and networks owned or managed by The Fake Chicken Company must promptly notify management of all conditions that could lead to a disruption of business activities.

 

 

Help with Understanding this Policy

1.2    Backups

 

1.2.1   Although it is stated in other policies that critical information is not to be stored on portable devices, in unusual circumstances when this may be the case, the staff member who has the equipment in their care must ensure the data is backed up... 

 

 

  

2.      MANAGEMENT RESPONSIBILITIES

2.1    BCM Preparation

 

2.1.1   Division managers must be consulted during the preparation of the Business Continuity Plan as it is important that this plan does not conflict with any other plan that will be initiated in the event of an emergency or disaster. 

 

 

 

...and more

 

2.2    Setting Priorities

 

2.2.1   The Fake Chicken Company Divisions and remote system users users that need to be supported in the event of an emergency or disaster must implement hardware, software, policies, and related procedures consistent with the those approved by the IT Manager.

 

 

          Hardware Management Policy

          Network Management Policy

 

...and more

 

2.3    Risk Management

 

2.3.1   Based  on  a  Business  Impact  Assessment,  senior managers  must  decide where  The Fake Chicken Company will be self-insured e.g accept risks and in which circumstances it will seek to cover itself through other means such as replicated systems, third party arrangements or external insurance.

 

 

2.4    Backups

 

2.4.1   All corporate data or information must be backed up.  Any corporate data or information not included in daily backup routines managed by the IT Manager is the responsibility of the Division Manager ...

 

 

        Information Management Policy

        Backup Procedure

 

3.      INFORMATION SYSTEMS STAFF RESPONSIBILITIES

3.1    Preparation and Testing of Business Continuity Plan

 

3.1.1   An Information Systems Business Continuity Plan must be prepared by the IT Manager and periodically updated to ensure that there is a formal procedure for recovering computer systems and information in the event of any interruption or degradation of service.  

 

 

 

...and more

 

3.2    Staff Participation

 

3.2.1   The IT Manager must annually prepare an inventory of key The Fake Chicken Company technical jobs and the names of the individuals who currently fill these jobs.

 

 

 

...and more

3.3    Risk Management

 

3.3.1   Each year the Information Systems Division must arrange an organisation wide audit of the computer systems...

 

 

3.4    Backups

 

3.4.1   All critical business information, system configuration, user information and critical software residing on The Fake Chicken Company computer systems and networks must be backed up daily. 

 

 

        Information Management Policy

        Backup Procedure

        Backup Log

  

...and more

 

© 2004 Kaon Security Ltd

 

 Top