Incident Response, Business Continuity and Disaster Recovery Plans Case Study

Incident Response, Business Continuity and Disaster Recovery Plans - Case Study Example In addition, it is also compulsory to identify assets that may not limit to employees, information, hardware/network devices, financials, legal counsel, security and locations for facilitating BCP. The BCP increases the image of an organization among the employees, shareholders and consumers through representing a positive approach. Importantly, an effective BCP recognizes the link between human and assets. 15 Organizations are always at probable catastrophe for instances tornadoes, floods, blizzards, earthquakes and fire mishaps. However these are known natural disasters but other risks include power and energy distractions, sabotage, cyber assaults, hackers, infrastructure, transportation and security failure. Moreover, ecological disasters for example pollution and harmful materials spills are also a possible risk for organizations. Therefore, generating BCP ensures any organization is able to resolve any of the above crises. 16 The data related to the services or the goods that need to be delivered can be obtained through the mission statement of the organization. Moreover, the legal and delivering specifications of the products or the services can also be achieved via mission statement. The objective of the IT department states mission-critical functions and services for the organization. (this is my own constructed mission statement) 16 As the I.T department has not implemented a risk management and I.T service management framework, we were not able to find the required answers. (I have assumed these requirements, as there is no case study) 17 The additional expenses must be determined if the functions or procedures related to the business are untreatable. Moreover, this should also be taken into consideration that for the duration of time the functions can be operated without the hiring of additional staff. Similarly, the government regulations  regarding the fines, penalties, breaches must be determined and factored into the BCP budget. Risk management framework address risks that can be mitigated, transferred, void or accepted.