Planning P of Incident Management Framework

(This is Part 2 of a multi-part blog examining the “4Ps” of Incident Management Framework)

Before creating Business Continuity plans, an important Planning process must occur.  This Planning process helps identify criticalities (ranking or tiers – including dependencies) and impacts on Reputation, Customers and Regulatory requirements.  Planning results should also unearth gaps, vulnerabilities and single points of failure in current operations.

Accordingly, Planning should help determine RTO’s for critical technology and business processes, and should also include ‘what if?’ analyses to identify domino effects (or causality chains) of potential disruptions to those critical functions.

Effective Planning goes beyond the traditional BIA to encompass upstream and downstream dependencies, geospatial information (mapping), the implications of time zones, currencies and other supply chain, and regulatory, considerations.

Ultimately, the Planning process must lead to more than Plans.  Planning should supply Senior Executives and Incident Managers with the information needed to support decision-making in response to any operational disruption.

The next blog will address the 2nd “P” of Incident Management Framework: Plan Development

 

SHARE:
Ramesh Warrier

Ramesh Warrier

eBRP Founder and Chief Designer of eBRP Suite, Ramesh is a proponent of constant change, a visionary who believes that the practice of Business Continuity can deliver improved operational efficiency. Ramesh, B.Tech in Electrical Engineering, has nearly 30 years experience in Business & Technology roles. His thoughts are expressed in blogs, white-papers, frequent webcasts and speaking engagements at industry conferences.

Related Posts

A Toolkit to Build Enterprise Resiliency

A Toolkit to Build Enterprise Resil...

A well-rounded Enterprise Resiliency Toolkit (𝗧𝗼𝗼𝗹𝗸𝗶𝘁) would provide key tools…
Enterprise Resiliency: Navigating Through Disruptions

Enterprise Resiliency: Navigating T...

In today’s threat landscape, the ability of an organization to…
Orchestrating BC/DR Testing: Virtual – Emergency Operations Centers

Orchestrating BC/DR Testing: Virtua...

  Enhancing Planning and Logistics Management  Coordinating BC/DR tests involves…
Insights into creating a successful Disaster Recovery Test – Part 2: Preparation

Insights into creating a successful...

Insights into creating a successful Disaster Recovery exercise – Part 1: Objectives

Insights into creating a successful...

Aligning Cyber Incident Response Planning with Your BC/DR Program

Aligning Cyber Incident Response Pl...

Cyber disruptions – and their impact on both reputations and…
What Can You Do when your BCM software Relationship Falls Apart

What Can You Do when your BCM softw...

“This isn’t working.”  “I’ve changed.”  “I don’t see a future…
Aligning BC/DR to CSIRP Challenges

Aligning BC/DR to CSIRP Challenges

The immediate reaction to a cyber-security incident is the FUD…
Technology Modeling – the eBRP Way

Technology Modeling - the eBRP Way

Definition: Technology modeling is a point-in-time snapshot of an Enterprise’s…
eBIA – The eBRP Way

eBIA - The eBRP Way

Definition: A Business Impact Analysis (BIA) is the cornerstone of…