1 |
StepsPrepare/Review/Update CO/Unit Risk assessment. |
Responsible PartyBCP focal point |
Template/Guideline |
Explanatory Notes- This includes Security Risk Assessment (SRA) which is prepared by DSS in consultation with the Security Management Team (SMT); |
2 |
StepsPrepare/Review/Update CO/Unit Business Impact Analysis (BIA). |
Responsible PartyBCP focal point |
Template/Guideline |
Explanatory Notes- Identify critical business functions and assess the impact from identified risks along with Recovery Time Objectives (RTO) of critical functions along with necessary ICT tools/equipment to continue these functions; |
3 |
StepsPrepare/review/update CO/Unit BCP Document |
Responsible PartyBCP focal point |
Template/Guideline |
Explanatory Notes- Based on the Risk Assessment and BIA, review/update existing BCP to ensure inclusion of most recent critical function and critical staffing list with alternates and their contact details; |
4 |
StepsShare draft BCP with all supporting documents with BMS Directorate |
Responsible PartyBCP focal point |
Template/Guideline |
Explanatory NotesVia email. |
5 |
StepsBMS Directorate review and provide CO/Units any comments |
Responsible Party
|
Template/Guideline |
Explanatory NotesVia email |
6 |
StepsApprove/sign off BCP Documents |
Responsible PartyHead of Office |
Template/Guideline |
Explanatory Notes- All supporting documents are to be annexed to the BCP |
7 |
StepsArrange for BCP Test |
Responsible PartyHead of Office |
Template/Guideline |
Explanatory Notes- BCP simulation exercise should test the viability of the identified critical functions |
8 |
StepsUpload signed BCP and BCP test report |
Responsible PartyBCP focal point |
Template/Guideline |
Explanatory Notes |