Elements and Performance Criteria
- Evaluate impact of system on business continuity
- Identify business critical functions and the security environment from documentation and from discussion with business area and project team
- Identify critical data and software from documentation
- Assess potential impact of business risk and threats on IT systems
- Identify and evaluate statutory requirements, commercial requirements and contingency possibilities according to specifications and cost constraints
- Evaluate threats to system
- Formulate prevention and recovery strategy
- Evaluate prevention and recovery options to support critical business functions against business specifications and cost constraints
- Review current operational procedures to ensure that adequate risk safeguards and contingency plans are in place
- Submit disaster recovery and prevention strategy to appropriate person for approval
- Develop disaster recovery plan to support strategy
- Identify and document resources required for disaster recovery according to specifications and cost constraints
- Identify and document processes required for disaster strategy according to project standards
- Identify cut-over criteria before initiating disaster plan
- Document disaster recovery plan and submit to appropriate person for review and sign-off