<Organization>
Business continuity management strategy report
<Version>
<Date of approval and publishing>
The BCM strategy defines the options selected to meet and fulfill the requirements generated by the BIA and risk assessment (RA) phases. These options are selected on the basis of applicability, benefit, and cost.
The scope of the BCM strategy covers eight areas. The following list shows these areas along with the relevant options selected:
It is estimated that the above options would require <implementation period> and will require the following resources:
Requirements generated from the BIA process need an implementation roadmap in order to create the required results and contribute to <organization>‘s readiness for disasters. The BCM strategy phase focuses on defining the strategic options <organization> would adopt to implement the requirements and reach the desired state of readiness and recoverability.
The selection of strategic options is based on practicality and suitability for <organization>‘s environment and culture. Naturally, there are several options to select from in order to fulfill the requirements. Once selections are made, the options are then translated into implementation plans with specific timelines.
Being part of the BCM life cycle, the business continuity strategy provides an insight into how <organization>‘s management would prepare for disasters.
The main inputs for developing this strategy came from the BIA. These inputs provided solid grounds for introducing the different continuity options available for <organization> and the selection of the right options. The key inputs for creating the BCM strategy are:
The business continuity strategy looks at the ultimate goal of BCM, which is to ensure there is the capability to deliver products and services and to protect the critical assets of the organization. The specific objectives of the business continuity strategy are to:
The business continuity strategy was developed through the following steps:
1 Identify critical processes, critical people, and critical resources from the BIA.
2 Identify available options for the various areas of the
BCM strategy.
3 Recommend the preferred options for each of the areas mentioned above.
Crisis management
Processes
Technology
People
Facilities and premises
Business continuity management
Data and information
Managing a crisis is the key area of any business continuity plan. Typically, crisis management plans consist of:
In developing a crisis management plan, there are two options:
During the BIA phase, various processes across departments were rated according to their criticality and impact on the <organization>‘s operations. In the strategy phase, we are looking at how each category of these would be addressed. The main theme of this section is to create alternative arrangements for the original processes. The alternative processes would be activated in times of disasters and crises.
Typically, there are two options in this regard:
The organization has a high level of dependency upon technology to perform its activities and operations. The recovery of IT components is an essential prerequisite to recovering the business operations and activities. To achieve IT recovery, the available options are to:
A cornerstone for business continuity and the ability to recover from disasters is to maintain data and information that meet the requirements of the organization in terms of integrity, confidentiality, availability, and currency.
As for the data backup aspect, the following options are available:
The preferred options for this are to:
<organization> needs to maintain a proper supply chain for its critical activities in order to deliver services and perform operations. In this regard, the preferred options are to:
People are a critical component of any business continuity plan. The options that are considered in this regard are to:
There are some risks and threats that would make the normal working place unusable and inaccessible. In this regard, <organization> needs to have alternative places identified, prepared and equipped with resources according to the findings of the BIA in advance to accommodate users and their activities. The options are to:
As the business continuity program matures in <organization>, a large quantity of plans, documents, and information is generated. Managing these items is part of the daily activities of the business continuity function. The options are to:
Strategy area |
Action items |
Ownership |
Crisis management |
<List selected options> |
List the owners |
Processes |
<List selected options> |
List the owners |
Technology |
<List selected options> |
List the owners |
People |
<List selected options> |
List the owners |
Facilities and premises |
<List selected options> |
List the owners |
Business continuity management |
<List selected options> |
List the owners |
Data and information |
<List selected options> |
List the owners |
Supplies |
<List selected options> |
List the owners |
18.219.159.197