Business impact analysis

Shashwat Shankar
Shashwat ShankarTrainee at Appin Technologies em Appin Technologies
Business Impact Analysis of Presented By:- Saurabh Kumar Sharma (IMB2018002) Gokul Krishnan B (IMB2018012) Balaji Srivastava (IMB2018014) Shashwat Shankar(IMB2018017)
A dynamic process that identifies and prioritizes the critical functions and the likely threats to those functions. These management disciplines, processes, and techniques provide business continuity for critical business functions under the circumstances . These circumstances and limits include: ● Defining worst-case scenarios used for business continuity planning. ● Approving the funding and staffing of the company's BCP Program.
Business Continuity in context Disaster Recovery - The creation & execution of plans to recover the data & systems of an organisation Contingency - the physical or process alternative to a single point of failure eg. Backup generator for power failures Operational Continuity - the alternative processes implemented during a failure, which allow the “process” to continue, whilst relying on the contingencies or DR Plans to restore full operations Business Continuity - the processes by which business can be maintained to an acceptable level until full processes and systems are restored
Why Should we do Business Continuity Planning (BCP)? •To identify the organisation’s key processes •To identify the critical underlying technology & services •To identify the critical stakeholder relationships •To identify the alternative approaches •To establish a plans that can be readily and effectively activated •To provide real operational alternatives
Phases of Continuity Planning
Business Impact Analysis Business Impact Analysis (BIA) process identifies and evaluates the potential effects (financial, life/safety, regulatory, legal/contractual, reputational and so forth) of natural and man-made events or disasters on business operations
Four purposes of the BIA 1. Obtain an understanding of the organization’s most critical objectives 2. Inform a management decision on maximum tolerable outage for each function 3. Provide the resource information from which an appropriate recovery strategy can be determined 4. Outline dependencies that exist both internally and externally
7 steps of a Business Impact Analysis 1. Identify key business processes and functions 2. Establish requirements for business recovery 3. Determine resource interdependencies 4. Determine impact on operations 5. Develop priorities and classification of business processes and functions 6. Develop recovery time requirements 7. Determine financial, operational, and legal impact of disruption
Impact Criteria Businesses are prone to a host of disasters that vary in degree from minor to catastrophic
Understanding impact criticality Recovery Time Requirements Maximum tolerable downtime (MTD): the maximum downtime a business can tolerate the absence or unavailability of a particular business function. The higher the criticality the shorter the MTD is likely to be Downtime consists of two elements: systems recovery and the work recovery time MTD = RTO + WRT. Recovery Time Objective (RTO): time available to recover disruptive systems and resources. This is the time you will have to get systems back up and running. Work Recovery Time (WRT): It takes time to get critical business functions back up and running once the systems (hardware, software, and configuration) are restored. Recovery Point Objective: the amount or extent of data loss to be tolerated. The recovery point objective (RPO) is the age of files that must be recovered from backup storage for normal operations to resume If maximum tolerance downtime (MTD) 3 days then Recovery time objective (RTO) must be in 1 day and rest 2 days are for work recovery time (WRT).
Summary Of the Case ● In December Morphy Richards HQ was flooded. ● Risk Identification ○ Threat:- Floods (weather event) ○ Vulnerability:- IT System, Data centers,Key Machinery and Manufacturing units, Buildings ● Synstar international kicked Morphy Richards BCP plan into action and recover within 24 hours ● Backup IT system were installed to run Morphy Richards business system ● The backup was powerful enough to continue business even after three complete weeks and was capable to run business in the most demanded period of the year.
Key Process ● Pending Orders ● Tracking in Stock Items ● IT maintenance ● Online Catalogue ● Online assistance ● Order Tracking ● Credit Card Processing ● Website Product Search Database link
Conclusion 1. The problem has only been analysed with IT maintenance and backup. 2. If any calamity or disaster strikes it effects the different business functions like the SCM and the different type of BIA and effectively a different approach to BCP has to be applied 3. BIA only deals with impact of disaster. It does not provide any insights for a what could be a solution for it. 4. Many businesses have access to more than one facility. Hardware at an alternate facility can be configured to run similar hardware and software applications when needed. Assuming data is backed up off-site or data is mirrored between the two sites, data can be restored at the alternate site and processing can continue
Thank You
1 de 14

Business impact analysis

Baixar para ler offline
Educação

This is an assignment on business continuity and planning and it is about the Morphy Richards case study.

Shashwat Shankar
Shashwat ShankarTrainee at Appin Technologies em Appin Technologies

Recomendados

Business Impact AnalysisBusiness Impact Analysis
Business Impact Analysisdlfrench
12.2K visualizações23 slides
BCMS Presentation1BCMS Presentation1
BCMS Presentation1barbytee
1.1K visualizações11 slides
Business Impact Analysis module 3.pptBusiness Impact Analysis module 3.ppt
Business Impact Analysis module 3.pptMohamedMoustafa91763
297 visualizações52 slides
Business continuity planningBusiness continuity planning
Business continuity planningSandeep Kashyap
1.4K visualizações33 slides
Bcp drpBcp drp
Bcp drpaqel aqel
3.6K visualizações29 slides
BCP Awareness BCP Awareness
BCP Awareness Imad Almurib
7.3K visualizações12 slides

Mais conteúdo relacionado

Mais procurados

Mais procurados(20)

Business Impact Analysis - The Most Important Step during BCMS ImplementationBusiness Impact Analysis - The Most Important Step during BCMS Implementation
Business Impact Analysis - The Most Important Step during BCMS Implementation
PECB 3.6K visualizações
Iso iec 27001 foundation training course by interpromIso iec 27001 foundation training course by interprom
Iso iec 27001 foundation training course by interprom
Mart Rovers407 visualizações
ISO/IEC 27701 vs. ISO/IEC 27001 vs. NIST: Essential Things You Need to KnowISO/IEC 27701 vs. ISO/IEC 27001 vs. NIST: Essential Things You Need to Know
ISO/IEC 27701 vs. ISO/IEC 27001 vs. NIST: Essential Things You Need to Know
PECB 3.2K visualizações
Business impact analysis and Cost-benefit Analysis. Risk AssesmentBusiness impact analysis and Cost-benefit Analysis. Risk Assesment
Business impact analysis and Cost-benefit Analysis. Risk Assesment
erfan74861.1K visualizações
Awareness iso 22301 danang suryoAwareness iso 22301 danang suryo
Awareness iso 22301 danang suryo
Danang suryo Wardhono249 visualizações
business-continuity-management-awareness-presentation-for-mampu2929business-continuity-management-awareness-presentation-for-mampu2929
business-continuity-management-awareness-presentation-for-mampu2929
Andy Willams857 visualizações
Governance, Risk, and Compliance ServicesGovernance, Risk, and Compliance Services
Governance, Risk, and Compliance Services
Capgemini1.9K visualizações
NIST Cybersecurity Framework 101 NIST Cybersecurity Framework 101
NIST Cybersecurity Framework 101
Erick Kish, U.S. Commercial Service4.8K visualizações
Quick Guide to ISO/IEC 27701 - The Newest Privacy Information StandardQuick Guide to ISO/IEC 27701 - The Newest Privacy Information Standard
Quick Guide to ISO/IEC 27701 - The Newest Privacy Information Standard
PECB 7.3K visualizações
ISO 27001:2013 Implementation procedureISO 27001:2013 Implementation procedure
ISO 27001:2013 Implementation procedure
Uppala Anand20.1K visualizações
ISO 27001 Implementation_Documentation_Mandatory_ListISO 27001 Implementation_Documentation_Mandatory_List
ISO 27001 Implementation_Documentation_Mandatory_List
SriramITISConsultant7.6K visualizações
Business Impact Analysis - Clause 4 Of BS25999 In PracticeBusiness Impact Analysis - Clause 4 Of BS25999 In Practice
Business Impact Analysis - Clause 4 Of BS25999 In Practice
Dipankar Ghosh5.3K visualizações
Isms awareness trainingIsms awareness training
Isms awareness training
SAROJ BEHERA18.2K visualizações
Privacy Trends: Key practical steps on ISO/IEC 27701:2019 implementationPrivacy Trends: Key practical steps on ISO/IEC 27701:2019 implementation
Privacy Trends: Key practical steps on ISO/IEC 27701:2019 implementation
PECB 3K visualizações
Business continuity management per ISO 22301 - a certification training cour... Business continuity management per ISO 22301 - a certification training cour...
Business continuity management per ISO 22301 - a certification training cour...
Mart Rovers238 visualizações
Business Continuity ManagementBusiness Continuity Management
Business Continuity Management
Lusungu Mkandawire CISA,CISM,CGEIT,CPF,PRINCE2619 visualizações
Isaca crisc-coursewareIsaca crisc-courseware
Isaca crisc-courseware
Laxmi Bank2.6K visualizações
Implementing ISO27001 2013Implementing ISO27001 2013
Implementing ISO27001 2013
scttmcvy1.8K visualizações
ISO 27001 - information security user awareness training presentation -part 2ISO 27001 - information security user awareness training presentation -part 2
ISO 27001 - information security user awareness training presentation -part 2
Tanmay Shinde4.7K visualizações
CISA Domain 1 - IS Auditing (day 1)CISA Domain 1 - IS Auditing (day 1)
CISA Domain 1 - IS Auditing (day 1)
Cyril Soeri5.1K visualizações

Similar a Business impact analysis

Disaster Biz ResumptDisaster Biz Resumpt
Disaster Biz ResumptJimGroark
407 visualizações39 slides
Cissp Week 24Cissp Week 24
Cissp Week 24jemtallon
1.5K visualizações69 slides

Similar a Business impact analysis (20)

Business Continuity Plan TemplateCIO Maria Sosa has asked you to p.docxBusiness Continuity Plan TemplateCIO Maria Sosa has asked you to p.docx
Business Continuity Plan TemplateCIO Maria Sosa has asked you to p.docx
felicidaddinwoodie10 visualizações
Building a Business Continuity CapabilityBuilding a Business Continuity Capability
Building a Business Continuity Capability
Rod Davis753 visualizações
Business impact.analysis based on ISO 22301Business impact.analysis based on ISO 22301
Business impact.analysis based on ISO 22301
mascot4u1.3K visualizações
Business continuity planning and disaster recoveryBusiness continuity planning and disaster recovery
Business continuity planning and disaster recovery
KrutiShah114481 visualizações
Disaster Biz ResumptDisaster Biz Resumpt
Disaster Biz Resumpt
JimGroark407 visualizações
Cissp Week 24Cissp Week 24
Cissp Week 24
jemtallon1.5K visualizações
Business continuity & disaster recoveryBusiness continuity & disaster recovery
Business continuity & disaster recovery
George Coutsoumbidis1.6K visualizações
Cyber Security and Business Continuity an Integrated DisciplineCyber Security and Business Continuity an Integrated Discipline
Cyber Security and Business Continuity an Integrated Discipline
Graeme Parker260 visualizações
Business continuity management systemBusiness continuity management system
Business continuity management system
subbusai82238 visualizações
IT infra, emerging technology and governance IT infra, emerging technology and governance
IT infra, emerging technology and governance
Azra'ee Mamat44 visualizações
Building cbis, mis, csvtuBuilding cbis, mis, csvtu
Building cbis, mis, csvtu
Narender Chintada33 visualizações
Incident managment planIncident managment plan
Incident managment plan
Safwan Hashmi127 visualizações
BCM RoadmapBCM Roadmap
BCM Roadmap
btrmuray477 visualizações
Bcm RoadmapBcm Roadmap
Bcm Roadmap
btrmuray1.9K visualizações
BCP-DRP Audit.pptBCP-DRP Audit.ppt
BCP-DRP Audit.ppt
LukmanPatel789 visualizações
What is business continuity planning-bcpWhat is business continuity planning-bcp
What is business continuity planning-bcp
Adv Prashant Mali5.5K visualizações
Business Continuity PlanningBusiness Continuity Planning
Business Continuity Planning
alanlund9.4K visualizações
Promotion_of_Business_Continuity_Management_-_Plan_Guide_and_template.pdfPromotion_of_Business_Continuity_Management_-_Plan_Guide_and_template.pdf
Promotion_of_Business_Continuity_Management_-_Plan_Guide_and_template.pdf
CPittman39 visualizações
Chap6 2007 Cisa Review CourseChap6 2007 Cisa Review Course
Chap6 2007 Cisa Review Course
Desmond Devendran2.7K visualizações
Chap6 2007 C I S A Review CourseChap6 2007 C I S A Review Course
Chap6 2007 C I S A Review Course
Desmond Devendran669 visualizações

Mais de Shashwat Shankar

Expert system designExpert system design
Expert system designShashwat Shankar
37 visualizações11 slides
World economy World economy
World economy Shashwat Shankar
24 visualizações8 slides

Mais de Shashwat Shankar(20)

Application of Expert System in medical systemsApplication of Expert System in medical systems
Application of Expert System in medical systems
Shashwat Shankar227 visualizações
Data mining and their applicationsData mining and their applications
Data mining and their applications
Shashwat Shankar26 visualizações
Expert system designExpert system design
Expert system design
Shashwat Shankar37 visualizações
Library walkthrough in Retail ManagementLibrary walkthrough in Retail Management
Library walkthrough in Retail Management
Shashwat Shankar16 visualizações
Standard opening procedure for retail storesStandard opening procedure for retail stores
Standard opening procedure for retail stores
Shashwat Shankar36 visualizações
World economy World economy
World economy
Shashwat Shankar24 visualizações
Application of AI in customer relationship managementApplication of AI in customer relationship management
Application of AI in customer relationship management
Shashwat Shankar262 visualizações
Search Engine OptimizationSearch Engine Optimization
Search Engine Optimization
Shashwat Shankar60 visualizações
Business intelligenceBusiness intelligence
Business intelligence
Shashwat Shankar27 visualizações
Management information systemManagement information system
Management information system
Shashwat Shankar7 visualizações
Critical it assetsCritical it assets
Critical it assets
Shashwat Shankar21 visualizações
Business impact assessment (bia)Business impact assessment (bia)
Business impact assessment (bia)
Shashwat Shankar188 visualizações
Business impact analysis of mindtreeBusiness impact analysis of mindtree
Business impact analysis of mindtree
Shashwat Shankar21 visualizações
Auditing based approachAuditing based approach
Auditing based approach
Shashwat Shankar29 visualizações
Case Study on Acme ltdCase Study on Acme ltd
Case Study on Acme ltd
Shashwat Shankar106 visualizações
Business Continuity and PlanningBusiness Continuity and Planning
Business Continuity and Planning
Shashwat Shankar24 visualizações
Singapore airlineSingapore airline
Singapore airline
Shashwat Shankar150 visualizações
Vietnam country profileVietnam country profile
Vietnam country profile
Shashwat Shankar39 visualizações
Air bus websiteAir bus website
Air bus website
Shashwat Shankar180 visualizações
Swot of 3m companySwot of 3m company
Swot of 3m company
Shashwat Shankar60 visualizações

Último

DU Oral Examination Toni SantamariaDU Oral Examination Toni Santamaria
DU Oral Examination Toni SantamariaMIPLM
128 visualizações2 slides
STERILITY TEST.pptxSTERILITY TEST.pptx
STERILITY TEST.pptxAnupkumar Sharma
102 visualizações9 slides
discussion post.pdfdiscussion post.pdf
discussion post.pdfjessemercerail
70 visualizações1 slide
Lecture: Open InnovationLecture: Open Innovation
Lecture: Open InnovationMichal Hron
82 visualizações56 slides

Último(20)

DU Oral Examination Toni SantamariaDU Oral Examination Toni Santamaria
DU Oral Examination Toni Santamaria
MIPLM128 visualizações
American Psychological Association 7th Edition.pptxAmerican Psychological Association 7th Edition.pptx
American Psychological Association 7th Edition.pptx
SamiullahAfridi458 visualizações
STERILITY TEST.pptxSTERILITY TEST.pptx
STERILITY TEST.pptx
Anupkumar Sharma102 visualizações
BYSC infopack.pdfBYSC infopack.pdf
BYSC infopack.pdf
Fundacja Rozwoju Społeczeństwa Przedsiębiorczego144 visualizações
discussion post.pdfdiscussion post.pdf
discussion post.pdf
jessemercerail70 visualizações
Lecture: Open InnovationLecture: Open Innovation
Lecture: Open Innovation
Michal Hron82 visualizações
Women from Hackney’s History: Stoke Newington by Sue DoeWomen from Hackney’s History: Stoke Newington by Sue Doe
Women from Hackney’s History: Stoke Newington by Sue Doe
History of Stoke Newington103 visualizações
JiscOAWeek_LAIR_slides_October2023.pptxJiscOAWeek_LAIR_slides_October2023.pptx
JiscOAWeek_LAIR_slides_October2023.pptx
Jisc50 visualizações
Azure DevOps Pipeline setup for Mule APIs #36Azure DevOps Pipeline setup for Mule APIs #36
Azure DevOps Pipeline setup for Mule APIs #36
MysoreMuleSoftMeetup75 visualizações
OEB 2023 Co-learning To Speed Up AI Implementation in Courses.pptxOEB 2023 Co-learning To Speed Up AI Implementation in Courses.pptx
OEB 2023 Co-learning To Speed Up AI Implementation in Courses.pptx
Inge de Waard148 visualizações
Community-led Open Access Publishing webinar.pptxCommunity-led Open Access Publishing webinar.pptx
Community-led Open Access Publishing webinar.pptx
Jisc49 visualizações
ICS3211_lecture 08_2023.pdfICS3211_lecture 08_2023.pdf
ICS3211_lecture 08_2023.pdf
Vanessa Camilleri68 visualizações
Class 10 English notes 23-24.pptxClass 10 English notes 23-24.pptx
Class 10 English notes 23-24.pptx
TARIQ KHAN63 visualizações
Compare the flora and fauna of Kerala and Chhattisgarh ( Charttabulation) Compare the flora and fauna of Kerala and Chhattisgarh ( Charttabulation)
Compare the flora and fauna of Kerala and Chhattisgarh ( Charttabulation)
AnshulDewangan395 visualizações
Plastic waste.pdfPlastic waste.pdf
Plastic waste.pdf
alqaseedae81 visualizações
UWP OA Week Presentation (1).pptxUWP OA Week Presentation (1).pptx
UWP OA Week Presentation (1).pptx
Jisc51 visualizações
Classification of crude drugs.pptxClassification of crude drugs.pptx
Classification of crude drugs.pptx
GayatriPatra1449 visualizações
ANATOMY AND PHYSIOLOGY UNIT 1 { PART-1}ANATOMY AND PHYSIOLOGY UNIT 1 { PART-1}
ANATOMY AND PHYSIOLOGY UNIT 1 { PART-1}
DR .PALLAVI PATHANIA156 visualizações
SIMPLE PRESENT TENSE_new.pptxSIMPLE PRESENT TENSE_new.pptx
SIMPLE PRESENT TENSE_new.pptx
nisrinamadani2146 visualizações
Drama KS5 BreakdownDrama KS5 Breakdown
Drama KS5 Breakdown
WestHatch50 visualizações

Business impact analysis

  • 1. Business Impact Analysis of Presented By:- Saurabh Kumar Sharma (IMB2018002) Gokul Krishnan B (IMB2018012) Balaji Srivastava (IMB2018014) Shashwat Shankar(IMB2018017)
  • 2. A dynamic process that identifies and prioritizes the critical functions and the likely threats to those functions. These management disciplines, processes, and techniques provide business continuity for critical business functions under the circumstances . These circumstances and limits include: ● Defining worst-case scenarios used for business continuity planning. ● Approving the funding and staffing of the company's BCP Program.
  • 3. Business Continuity in context Disaster Recovery - The creation & execution of plans to recover the data & systems of an organisation Contingency - the physical or process alternative to a single point of failure eg. Backup generator for power failures Operational Continuity - the alternative processes implemented during a failure, which allow the “process” to continue, whilst relying on the contingencies or DR Plans to restore full operations Business Continuity - the processes by which business can be maintained to an acceptable level until full processes and systems are restored
  • 4. Why Should we do Business Continuity Planning (BCP)? •To identify the organisation’s key processes •To identify the critical underlying technology & services •To identify the critical stakeholder relationships •To identify the alternative approaches •To establish a plans that can be readily and effectively activated •To provide real operational alternatives
  • 6. Business Impact Analysis Business Impact Analysis (BIA) process identifies and evaluates the potential effects (financial, life/safety, regulatory, legal/contractual, reputational and so forth) of natural and man-made events or disasters on business operations
  • 7. Four purposes of the BIA 1. Obtain an understanding of the organization’s most critical objectives 2. Inform a management decision on maximum tolerable outage for each function 3. Provide the resource information from which an appropriate recovery strategy can be determined 4. Outline dependencies that exist both internally and externally
  • 8. 7 steps of a Business Impact Analysis 1. Identify key business processes and functions 2. Establish requirements for business recovery 3. Determine resource interdependencies 4. Determine impact on operations 5. Develop priorities and classification of business processes and functions 6. Develop recovery time requirements 7. Determine financial, operational, and legal impact of disruption
  • 9. Impact Criteria Businesses are prone to a host of disasters that vary in degree from minor to catastrophic
  • 10. Understanding impact criticality Recovery Time Requirements Maximum tolerable downtime (MTD): the maximum downtime a business can tolerate the absence or unavailability of a particular business function. The higher the criticality the shorter the MTD is likely to be Downtime consists of two elements: systems recovery and the work recovery time MTD = RTO + WRT. Recovery Time Objective (RTO): time available to recover disruptive systems and resources. This is the time you will have to get systems back up and running. Work Recovery Time (WRT): It takes time to get critical business functions back up and running once the systems (hardware, software, and configuration) are restored. Recovery Point Objective: the amount or extent of data loss to be tolerated. The recovery point objective (RPO) is the age of files that must be recovered from backup storage for normal operations to resume If maximum tolerance downtime (MTD) 3 days then Recovery time objective (RTO) must be in 1 day and rest 2 days are for work recovery time (WRT).
  • 11. Summary Of the Case ● In December Morphy Richards HQ was flooded. ● Risk Identification ○ Threat:- Floods (weather event) ○ Vulnerability:- IT System, Data centers,Key Machinery and Manufacturing units, Buildings ● Synstar international kicked Morphy Richards BCP plan into action and recover within 24 hours ● Backup IT system were installed to run Morphy Richards business system ● The backup was powerful enough to continue business even after three complete weeks and was capable to run business in the most demanded period of the year.
  • 12. Key Process ● Pending Orders ● Tracking in Stock Items ● IT maintenance ● Online Catalogue ● Online assistance ● Order Tracking ● Credit Card Processing ● Website Product Search Database link
  • 13. Conclusion 1. The problem has only been analysed with IT maintenance and backup. 2. If any calamity or disaster strikes it effects the different business functions like the SCM and the different type of BIA and effectively a different approach to BCP has to be applied 3. BIA only deals with impact of disaster. It does not provide any insights for a what could be a solution for it. 4. Many businesses have access to more than one facility. Hardware at an alternate facility can be configured to run similar hardware and software applications when needed. Assuming data is backed up off-site or data is mirrored between the two sites, data can be restored at the alternate site and processing can continue