Understanding the Relationship Between a BIA, a BCP, and a DRP

The primary focus of risk management is to preempt realized threats. It is not possible to foresee and prevent every event that could result in loss, meaning that the likelihood still exists that any organization will encounter an event that will interrupt normal business operations. Information security requires all information to be available when any authorized user needs it. Therefore, you will have to develop and implement methods and techniques for protecting the organization’s IT resources and ensuring that events do not interrupt normal business functions.

Business Impact Analysis (BIA)

The first step in developing plans to address interruptions is to identify those business ...

Get Fundamentals of Information Systems Security, 4th Edition now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.