Professional Documents
Culture Documents
Review of Internal Audit in RBS Exam: Business Continuity Planning (BCP)
Review of Internal Audit in RBS Exam: Business Continuity Planning (BCP)
Introduction
Objectives of BCP
Conclusion
Introduction
The plan ensures that personnel and assets are protected and are
able to function quickly in the event of a disaster.
BCP involves defining any and all risks that can affect the
organization's operations, making it an important part of the
organization's risk management strategy. Risks may include natural
disasters like fire, flood, earthquakes and cyber-attacks etc.
Introduction Cont’d
• A Business Continuity Plan, often abbreviated to BCP, is a plan
that outlines the actions to be taken when one or more defined
events disrupt normal business operations. Having a plan will
help you to ensure business continuity.
• A key component of a Business Continuity Plan (BCP) is a
Disaster Recovery Plan that contains strategies for handling IT
disruptions to networks, servers, personal computers and mobile
devices etc.
• It’s more comprehensive than a disaster recovery plan and
contains contingencies for business processes, assets, human
resources and business partners – every aspect of the business
that might be affected.
Objectives of BCP
The core objectives of Business Continuity Planning include:
• Reducing the possibility of any interruption in regular business
processes using proper risk management.
• Minimizing the impact of interruption, if any.
• Teaching the staff their roles and responsibilities in such a
situation to safeguard their own security and other interests.
• Protecting the business from failure and negative publicity.
• Protecting critical data and maintaining stakeholder relationships.
• Fulfilling legislative and regulatory requirements.
Steps to Creating a Business Continuity Plan
While creating an effective BCP is a lot of work, it's a critical piece of operating a
resilient business. The steps to creating a BCP are:
• Step 1: Assemble a Business Continuity Management Team - The makeup of
your team depends on your continuity objectives and the size of your company.
A good BCP should detail what the staff needs to do in the event of a disaster,
what communication methods are required, and the timeframe in which critical
IT services need to be available.
• Step 2: Ensure the Safety and Wellbeing of Your Employees - When planning,
the safety of employees must be prioritize amid a crisis. Be proactive and
transparently address their concerns.
Steps to Creating a Business Continuity Plan Cont’d
• Step 5: Test, Test Again and Make Improvements - No matter how long is
spent perfecting it, a Business Continuity Plan (BCP) is never truly finished.
Testing the Business Continuity Plan allows the organization to validate it as it
manages risks. The result of this testing is not "pass or fail," but continuous
improvement by identifying findings through a live exercise. The Business
Continuity team prepares the organization for success by ensuring continuous
business continuity testing.
Business Continuity Planning in NDIC
The Corporation had established a robust and tested Business Continuity
Management System (BCMS). Business Continuity Management System (BCMS)
is a Management System for Business Continuity Management (BCM). It
establishes, implements, operates, monitors, reviews, maintains and improves
business continuity.