A model supporting Business Continuity auditing & planning in Information Systems

Emmanuele Zambon, Damiano Bolzoni, Sandro Etalle, Marco Salvato

    Research output: Book/ReportReportProfessional

    160 Downloads (Pure)

    Abstract

    One of the main tasks of IT business continuity planing (BCP) is guaranteeing that incidents affecting the IT infrastructure do not affect the availability of IT-dependent business processes beyond a given acceptable extent. Carrying out BCP of information systems is particularly challenging because it has to take into consideration the numerous interdependencies between IT assets typically present in an IT-based organization. In this paper we present a model and a tool supporting BCP auditing by allowing IT personnel to estimate and validate the Recovery Time Objectives (to be) set on the various processes of the organization. Our tool can be integrated in COBIT-based risk assessment applications. Finally, we argue that our tool can be particularly useful for the continuous auditing of the BCP.
    Original languageEnglish
    Place of PublicationEnschede
    PublisherCentre for Telematics and Information Technology (CTIT)
    Number of pages9
    Publication statusPublished - 4 Mar 2007

    Publication series

    NameCTIT Technical Report Series
    PublisherCentre for Telematics and Information Technology, University of Twente
    No.TR-CTIT-07-17
    ISSN (Print)1381-3625

    Keywords

    • SCS-Cybersecurity

    Fingerprint Dive into the research topics of 'A model supporting Business Continuity auditing & planning in Information Systems'. Together they form a unique fingerprint.

    Cite this