The purpose of this Business Continuity Plan Procedure is to provide an effective, fit-for-purpose, predefined and documented framework and process to enable the Business Continuity Management of the Company’s Mission Critical Activities and their dependencies.
1.1 PROCEDURE OWNER
1.3 APPLICABLE REGULATIONS
1.4 RELATED [COMPANY] NORMS AND PROCEDURES
1.6 AUDIENCE AND SCOPE
1.7 DOCUMENT SUPPORT
2. DEFINITIONS & ABBREVIATIONS
3. PROCESS INITIATION AND MANAGEMENT
3.1 COMPANY POLICY STATEMENT
3.2 COMPANY BUSINESS CONTINUITY PROGRAM
4. BUSINESS CONTINUITY PROCESS
4.1 ASSESSMENT OF BUSINESS RISK AND IMPACT OF POTENTIAL EMERGENCIES
4.2 PREPARING FOR A POSSIBLE EMERGENCY
4.3 DISASTER RECOVERY PHASE
4.4 BUSINESS RECOVERY PHASE
4.5 TESTING THE BUSINESS CONTINUITY PROCESS
4.6 MAINTENANCE OF THE PLAN
6. FINAL CONSIDERATIONS
6.1 DISCIPLINARY ACTIONS AGAINST PROCEDURE VIOLATION
6.2 DOCUMENT REVISION
The purpose of this policy is to lay out the general rules that must be followed in designing and implementing company – wide managerial, operational and technical access controls, that prevent unauthorized access.
The objective of vulnerability and patch Management process is to keep the components that form part of information technology infrastructure (hardware, software and services) up to date with the latest patches and updates.