This guide presents a structured approach to aid federal agencies in business continuity and contingency planning. The guide draws on the work of leading organizations in the information technology industry and incorporates their guidance and practices. Many of the Year 2000-related concepts and practices presented in the guide build upon existing best practices in the contingency and disaster recovery areas.
The guide describes four phases--supported by agency Year 2000 program
management--with each phase representing a major Year 2000 business continuity
planning project activity or segment.
| Initiation | Business Impact
Analysis |
Contingency
Planning |
Testing |
| Establish a business continuity project work group and develop a high-level
business continuity planning strategy. Develop master schedule and milestones,
and obtain executive support.
|
Assess the potential impact of mission-critical system failures on agency’s core business processes. Define Year 2000 failure scenarios, and perform risk and impact analyses of each core business process. Assess infrastructure risks, and define the minimum acceptable levels of outputs for each core business process. | Identify and document contingency plans and implementation modes. Define
triggers for activating contingency plans, and establish business resumption
team for each core business process.
|
Validate the agency’s business continuity strategy. Develop and document
contingency test plans. Prepare and execute tests. Update disaster recovery
plans and procedures.
|