[_private/navbar.html]

CS-1, Contingency Planning for Business Continuity

DATES/PLACE: Boston: Ask for schedule.  This course can be economicallly presented in-house for groups of 3 or more.

COURSE FEE: $1,150, includes extra textbook

COURSE OBJECTIVES:

UPON COMPLETING THIS COURSE YOU WILL:

  1. Fully understand the importance of and key issues in contingency planning.
  2. Distinguish between disaster avoidance provisions and disaster recovery programs.
  3. Sell the contingency plan to senior management.
  4. Set up an effective organization for plan development, implementation and testing.
  5. Learn the key components of the body of the plan, their key missions and elements.
  6. Learn how to document contingency plans.
  7. Learn plan testing and maintenance.

COURSE OUTLINE:

I.   WHY CONTINGENCY AND RESUMPTION PLANS? THREATS IMPACT ON BUSINESSES

  1. The Going Concern Concept. and Information as a key resource.
  2. Legal mandates and Management responsibility.
  3. Threats to business continuity and systems availability.

II. THE OVERALL CORPORATE-WIDE BUSINESS CONTINUITY PROGRAM

  1. Prevention vs. remedial program.
  2. The overall business continuity protection program.
  3. Key elements of a disaster avoidance program.
  4. Business continuity, a "remedial" plan.

III.THE BUSINESS CONTINUITY PLAN DEVELOPMENT PROCESS

  1. Two views: Contingency plan development life cycle "process" and plan "Contents".
  2. Four key phases. Initiation steps, business impact analysis and scenario development.
  3. The "body" of the plan (contents).
  4. Plan documentation.
  5. Plan testing and upkeep.

IV. INITIATION PHASE

  1. Plan strategy. Impact analysis and disaster scenario development (nightmare and others).
  2. Organizing for contingency plan development, implementation and testing.
  3. Critical Systems and Critical Resources. Defining the "Time-Window" of Vulnerability.

V.  CONTINGENCY PLAN STRUCTURE (CONTENTS)

  1. Emergency preparedness.
  2. User stand-by continuity provisions. (contingency plans for user and office areas).
  3. Back-up.
  4. Recovery. Critical and non-critical recovery.

VI. PLAN DOCUMENTATION AND TESTING

  1. Who should document and maintain the plan. Automating documentation.
  2. Plan testing objectives. Test approaches (static, active, simulation/drills).
  3. Critical application testing. Testing schedule for various plan elements.

VII.NETWORK DISASTER RECOVERY AND NEW RECOVERY TECHNOLOGIES

  1. Network disaster recovery. Alternatives for communication link and equipment backup.
  2. New technologies: Channel extension, televaulting. Portable hot/cold sites.
  3. Issues after the recovery: reconciliation, recovery report, plan update, dismantling, etc.