• DocumentCode
    3037459
  • Title

    A Model Supporting Business Continuity Auditing and Planning in Information Systems

  • Author

    Zambon, Emmanuele ; Bolzoni, Damiano ; Etalle, Sandro ; Salvato, Marco

  • Author_Institution
    Univ. of Twente, Enschede
  • fYear
    2007
  • fDate
    1-5 July 2007
  • Firstpage
    33
  • Lastpage
    33
  • Abstract
    One of the main tasks of IT business continuity planning (BCP) is to guarantee that incidents affecting the IT infrastructure do not affect the availability of IT-dependent business processes beyond a given acceptable extent. Carrying out BCP of information systems is particularly challenging, because it has to take into consideration the numerous interdependencies between the IT assets typically present in an organization. In this paper we present a model and a tool supporting BCP auditing by allowing IT personnel to estimate and validate the recovery time objectives (to be) set on the various processes of the organization. Our tool can be integrated in COBIT-based risk assessment applications. Finally, we argue that our tool can be particularly useful for the dynamic auditing of the BCP.
  • Keywords
    auditing; business continuity; information systems; risk management; COBIT-based risk assessment; business continuity auditing; business continuity planning; information systems; Business continuity; Guidelines; Information systems; Measurement standards; Personnel; Process planning; Risk management; Standards development; Standards organizations; Standards publication;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Internet Monitoring and Protection, 2007. ICIMP 2007. Second International Conference on
  • Conference_Location
    San Jose, CA
  • Print_ISBN
    0-7695-2911-9
  • Electronic_ISBN
    0-7695-2911-9
  • Type

    conf

  • DOI
    10.1109/ICIMP.2007.4
  • Filename
    4271778
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=3037459