2 cissp ® Official Study Guide Eighth Edition


Statement of Organizational Responsibility



Download 19,3 Mb.
Pdf ko'rish
bet122/881
Sana08.04.2023
Hajmi19,3 Mb.
#925879
1   ...   118   119   120   121   122   123   124   125   ...   881
Bog'liq
(CISSP) Mike Chapple, James Michael Stewart, Darril Gibson - CISSP Official Study Guide-Sybex (2018)

Statement of Organizational Responsibility
The statement of organizational responsibility also comes from a senior-level executive and 
can be incorporated into the same letter as the statement of importance. It basically echoes 
the sentiment that “business continuity is everyone’s responsibility!” The statement of orga-
nizational responsibility restates the organization’s commitment to business continuity plan-
ning and informs employees, vendors, and affiliates that they are individually expected to do 
everything they can to assist with the BCP process.
Statement of Urgency and Timing
The statement of urgency and timing expresses the criticality of implementing the BCP and 
outlines the implementation timetable decided on by the BCP team and agreed to by upper 
management. The wording of this statement will depend on the actual urgency assigned to 
the BCP process by the organization’s leadership. If the statement itself is included in the 
same letter as the statement of priorities and statement of organizational responsibility, the 
timetable should be included as a separate document. Otherwise, the timetable and this 
statement can be put into the same document.
Risk Assessment
The risk assessment portion of the BCP documentation essentially recaps the decision-making 
process undertaken during the business impact assessment. It should include a discussion 

Plan Approval and Implementation 
117
of all the risks considered during the BIA as well as the quantitative and qualitative analyses 
performed to assess these risks. For the quantitative analysis, the actual AV, EF, ARO, SLE, 
and ALE fi gures should be included. For the qualitative analysis, the thought process behind 
the risk analysis should be provided to the reader. It’s important to note that the risk assess-
ment must be updated on a regular basis because it refl ects a point-in-time assessment.

Download 19,3 Mb.

Do'stlaringiz bilan baham:
1   ...   118   119   120   121   122   123   124   125   ...   881



Ma'lumotlar bazasi mualliflik huquqi bilan himoyalangan ©hozir.org 2024
ma'muriyatiga murojaat qiling
kiriting | ro'yxatdan o'tish
    Bosh sahifa
юртда тантана
Боғда битган
Бугун юртда
Эшитганлар жилманглар
Эшитмадим деманглар
битган бодомлар
Yangiariq tumani
qitish marakazi
Raqamli texnologiyalar
ilishida muhokamadan
tasdiqqa tavsiya
tavsiya etilgan
iqtisodiyot kafedrasi
steiermarkischen landesregierung
asarlaringizni yuboring
o'zingizning asarlaringizni
Iltimos faqat
faqat o'zingizning
steierm rkischen
landesregierung fachabteilung
rkischen landesregierung
hamshira loyihasi
loyihasi mavsum
faolyatining oqibatlari
asosiy adabiyotlar
fakulteti ahborot
ahborot havfsizligi
havfsizligi kafedrasi
fanidan bo’yicha
fakulteti iqtisodiyot
boshqaruv fakulteti
chiqarishda boshqaruv
ishlab chiqarishda
iqtisodiyot fakultet
multiservis tarmoqlari
fanidan asosiy
Uzbek fanidan
mavzulari potok
asosidagi multiservis
'aliyyil a'ziym
billahil 'aliyyil
illaa billahil
quvvata illaa
falah' deganida
Kompyuter savodxonligi
bo’yicha mustaqil
'alal falah'
Hayya 'alal
'alas soloh
Hayya 'alas
mavsum boyicha

yuklab olish