Can anyone give Business Continuity Plan (BCP) (ISO 27001)

[PE-2011]

Dear Friends,

Can anyone give Business Continuity Plan BCP (ISO 27001).

Maheswari

 

[Marc]

This is not a common topic here, I know, but... A quick "Bump". Anyone here with an example which can be shared? My Thanks in advance!

Business_continuity_planning

 

[Jen Kirley]

I found the MIT Business Continuity Plan.

The Business Emergency Plan template from www.ready.gov/business looks useful to me as well.

 

[samsung]

Dear Friends,

Can anyone give Business Continuity Plan BCP (ISO 27001).

Maheswari

ISO 27001 is 'Information Security Management System' (ISMS) whereas the BCP is a general term applied to recovery from a disaster when the business/ organization is exposed to threats (external or internal). Ofcourse ISMS does include a process for disaster recovery that can be applied to any kind of risk management.

The principle component of BCP is 'Risk Management' that includes framing out a policy, identifying potential risks, Assessing their potential impact on the organization, prioritizing and taking actions to minimize the potential impact, monitoring & reporting on the status of key risks on regular basis.

Here you can get a free template as well as samples of BCP. Due to confidentiality, I can't share a real world BCP yet I have attached a sample Risk Management sheet which can be used as a template for managing your own risks.

Few more samples are available here.

 

[samsung]

I found the MIT Business Continuity Plan.

The Business Emergency Plan template from www.ready.gov/business looks useful to me as well.

MIT BCP seems to be a nice document. I'll go through it patiently to improve our own plan.

Thanks for sharing.

 

[PE-2011]

Dear Jennifer, Thanks. It is really useful.
Regards
Maheswari

I found the MIT Business Continuity Plan.

The Business Emergency Plan template from www.ready.gov/business looks useful to me as well.

 

[PE-2011]

Dear Samsung, Thanks a lot. Very useful thing provided by you. Regards, Maheswari

ISO 27001 is 'Information Security Management System' (ISMS) whereas the BCP is a general term applied to recovery from a disaster when the business/ organization is exposed to threats (external or internal). Ofcourse ISMS does include a process for disaster recovery that can be applied to any kind of risk management.

The principle component of BCP is 'Risk Management' that includes framing out a policy, identifying potential risks, Assessing their potential impact on the organization, prioritizing and taking actions to minimize the potential impact, monitoring & reporting on the status of key risks on regular basis.

Here you can get a free template as well as samples of BCP. Due to confidentiality, I can't share a real world BCP yet I have attached a sample Risk Management sheet which can be used as a template for managing your own risks.

Few more samples are available here.

 

[SteveK]

For those interested I have attached a general BCP that our company uses(the SOPs referenced are obviously company specific). I hope it is of some use.

Steve

 

[marcellarhughes]

It really depends. There is not an industry standard. The idea behind a Business Continuity Plan is to provide the equipment, facilities and process for moving a business to another location due to the original facility being unusable. These plans should cover most contingencies, from an internet connection going down, to an office building being destroyed.

If a company is providing this service to your business, they may not provide any additional support beyond those outlined in the plan.

 

[hansenmartin]

ISO/IEC TS 20071-11:2012 applies to all static images that are used in any type of electronic document. It also applies to individual images within a slide show of electronic images.
ISO/IEC TS 20071-11:2012 does not apply to moving images (e.g. Videos etc).

The guidance contained in ISO/IEC TS 20071-11:2012 is intended to be used by the person who creates content to be placed in an electronic document. There is no expectation that this person will have any additional expertise beyond understanding the contents of the document and why an image was chosen to be placed within the document.

While the main intent of the guidance within ISO/IEC TS 20071-11:2012 is the creation of text alternatives, the information identified in this guidance could be placed in the main document text, reducing the length of the resulting text alternatives. However, placing information in the main document text does not fully replace the function of having some text alternatives for each image.