Preview

Unit 7 Lab 7 Performing a Business Impact Analysis for an IT Infrastructure

Better Essays
Open Document
Open Document
790 Words
Grammar
Grammar
Plagiarism
Plagiarism
Writing
Writing
Score
Score
Unit 7 Lab 7 Performing a Business Impact Analysis for an IT Infrastructure
Unit 7 Lab 7: Performing a Business Impact Analysis for an IT Infrastructure
IS 3110

Debra Williams

1. What is the goal and purpose of a BIA?
a. The purpose of a business impact analysis (BIA) report is to describe the potential risks specific to the organization studied. One of the basic assumptions behind BIA is that every component of the organization is reliant upon the continued functioning of every other component, but that some are more crucial than others and require a greater allocation of funds in the wake of a disaster. For example, a business may be able to continue more or less normally if the cafeteria has to close, but would come to a complete halt if the information system crashes.
2. Why is a business impact analysis (BIA) an important first step in defining a business continuity plan (BCP)?
a. The BIA is the first step because it is used to identify the impact that can result from disruptions in the business. Without the BIA, the BCP would not identify and prioritize which systems and processes must be sustained and provide the necessary information for maintaining them.
3. How does risk management and risk assessment relate to a business impact analysis for an IT infrastructure?
a. Risk assessment relates to a business impact analysis by showing the amount of risk in making a business deal, by comparing the potential loss to the percent the loss could occur.
b. Risk management relates to a business impact analysis by identifying resources and associated risks, determining their magnitude, identifying what safeguards are needed, and maintain the proper techniques to mitigate the risks.
4. What is the definition of Recovery Time Objective (RTO)? Why is this important to define in an IT Security Policy Definition as part of the Business Impact Analysis (BIA) or Business Continuity Plan (BCP)?
a. The RTO is the time in which the system or function must be recovered. The RTO would be equal to or less than the MAO. For example, if the MAO is

You May Also Find These Documents Helpful

  • Satisfactory Essays

    Disaster recovery and business continuity planning are processes that help organizations prepare for disruptive events. Management's involvement in this process can range from overseeing the plan, to providing input and support, to putting the plan into action during an emergency.…

    • 494 Words
    • 2 Pages
    Satisfactory Essays
  • Satisfactory Essays

    Project Part 2 Task 2

    • 461 Words
    • 2 Pages

    The Business Continuity Plan is designed to prepare an organization to continue doing business when a disaster strikes. The BCP differs from the traditional disaster recovery plan in the fact that a BCP covers all aspects of the business and incorporates the DRP as part of it. The DRP focuses on restoring data and on information technology only.…

    • 461 Words
    • 2 Pages
    Satisfactory Essays
  • Powerful Essays

    is 3110

    • 1342 Words
    • 5 Pages

    One (1) Business Impact Analysis (BIA) should be completed for each major business process within the company. It is important to note that sub-processes, although key to the completion of the main business process,…

    • 1342 Words
    • 5 Pages
    Powerful Essays
  • Better Essays

    Business Continuity and Disaster Recovery Planning Definition Disaster: is a natural or man-caused event that damages property and assets, injures or kills people, and impairs the ability for organizations to continue operating. Business Continuity Planning: is the set of activities required to ensure the continuation of critical business processes when a disaster occurs. Disaster Recovery Planning: is the set of activities concerned with the assessment, salvage, repair, and restoration of damaged facilities and assets that support critical business processes.…

    • 1114 Words
    • 10 Pages
    Better Essays
  • Satisfactory Essays

    an essential component of an organization's business continuance plan, it includes an exploratory component to…

    • 314 Words
    • 2 Pages
    Satisfactory Essays
  • Satisfactory Essays

    continuity plan overview

    • 689 Words
    • 3 Pages

    The BCM and his team will be responsible for performing a company-wide Business Impact Assessment (BIA) which will inform you all, as executives where we stand in the area of recovery and allow you to make informed decisions moving forward. Along with the production of the BIA, each team lead and the BCM will ensure that all staff members are properly made aware and trained on all information that pertains to them and their sections. Each section will be held responsible for their plans of action, and practicing those plans with staff in dry runs.…

    • 689 Words
    • 3 Pages
    Satisfactory Essays
  • Satisfactory Essays

    ISSC363 Assignment 3

    • 586 Words
    • 2 Pages

    At its core, the purpose of a risk assessment is identifying and evaluating risks that may potentially have a negative impact on an organization. It can help management understand the impact in terms of costs to the organization or the severity of a loss depending on the methodology used to conduct the risk assessment. The goal is to provide sound recommendations based on the risk assessment to help maintain data confidentiality, integrity and vulnerability while ensuring functionality and usability. Based on the results, management can make more informed decisions about what resources to protect, how to protect them and understand the potential costs and impact. Once the purpose of the risk assessment is understood, defining the scope is next.…

    • 586 Words
    • 2 Pages
    Satisfactory Essays
  • Satisfactory Essays

    Unit 7 Lab

    • 293 Words
    • 2 Pages

    2. Why is a business impact (BIA) an important first step in defining a business continuity plan (BCP)?…

    • 293 Words
    • 2 Pages
    Satisfactory Essays
  • Better Essays

    1.3 Explain what risk assessment is and how this is managed in the work setting…

    • 1959 Words
    • 8 Pages
    Better Essays
  • Better Essays

    Apes Ch 8 Notes

    • 3860 Words
    • 16 Pages

    2. Risk assessment is projected as a probability: a mathematical statement about how likely it is that harm will result from a hazard. It gives the estimate of an event’s actually happening.…

    • 3860 Words
    • 16 Pages
    Better Essays
  • Satisfactory Essays

    Insurance plays a big role in risk management for a personal financial plan. Outline an insurance plan for various stages of life. Specifically address the following required elements:…

    • 129 Words
    • 1 Page
    Satisfactory Essays
  • Powerful Essays

    Week 10 Technical Paper

    • 2283 Words
    • 10 Pages

    Every organization is faced with some risk or potential threat that could cause an interruption to the organization’s operations. These risks and threats can come from within or outside of the organization. To prepare for the worst that could happen, organizations must focus their attention on how to assess different types of risks to protect the organization from the possible negative effects to the daily operations. Performing a risk assessment is one of the most important steps in the risk management process (eHow, 2011).…

    • 2283 Words
    • 10 Pages
    Powerful Essays
  • Satisfactory Essays

    Quiz Week 5

    • 381 Words
    • 2 Pages

    8. Explain what Recovery Time Objective (RTO) is and why the DRP needs to be written to meet it.…

    • 381 Words
    • 2 Pages
    Satisfactory Essays
  • Powerful Essays

    1.3. Explain what risk assessment is and how this is managed in the work setting…

    • 3026 Words
    • 13 Pages
    Powerful Essays
  • Good Essays

    Acct 504 Case Study 2

    • 1426 Words
    • 5 Pages

    Risk assessment – The organization must identify and analyze the different factors that generate risk for the business and must decide how to manage these risks. Because economic industry, regulatory and operating conditions will continue to change. (coso)…

    • 1426 Words
    • 5 Pages
    Good Essays