Course Objectives

• This Course Objective Hasn't Been Provided Yet

Target Audience

IT managers and professionals, including Disaster Recovery (DR) managers or anyone responsible for, or involved with, Disaster Recovery Plans (DRP), Business Continuity Plans (BCP) and/or technology and IT auditing.

• T infrastructure
  • The issue of resilience
  • ISO 27031 Relationship with Information Security Management System (ISMS)
  • Data center and IT infrastructure
  • Operational sustainability
    • Data center site infrastructure tier standard
    • Elements of operational sustainability
  • Infrastructure strategy and policy
    • The strategy – how and depth
    • The policy requirements
    • Site and building protection
    • Network and information systems protection
• Risk evaluation and Business Impact Analysis (BIA)
  • Site and building risk assessment
  • PESTLE analysis (Political, Economic, Sociological, Technological, Legal, Environmental)
  • Types of BIA; strategic, tactical and operational
  • Implementation methods for technology BIA
• Managing recovery plans
  • Processes and procedures for supply chain management using a 3PQ (Third Party Questionnaire) approach, aligned with BSI PAS 7000
  • On and off-site data and information storage, including emergency response arrangements
  • Change management processes and procedures for day-to-day requirements
  • Risk control measures for critical supporting equipment and systems
• Understanding IT Disaster Recovery (DR) and reviewing the main activities
  • DR lifecycle, including resources and training
  • IT DR as part of the ISMS
  • Scope of IT elements and requirements
• IT disaster recovery plans
  • Building technology recovery plans
    • Plan ownership and structure, and roles and responsibilities of IT DR Team
    • Data and information sources, and internal and external dependencies
    • Best practice considerations using ISO 27301, as well as ISO 20000 and ITIL
    • Managing and recovering end-user computing and communications technology and infrastructure
    • Recovery options
  • Developing, implementing and testing
    • Ownership and plan structure
    • Roles and responsibilities of BC Champion and Team Leaders
    • Command, Coordination, Communications and Intelligence (C3i)
    • Role of the command center and essentials
    • Equipment and supporting information
    • Producing Situation Reports (SITREPS)
    • Types of testing/exercising
  • Major incident response
    • Defining an “incident” and the escalation process
    • Establishing Command, Coordination and Communications (3C)
    • Clarifying the role of the Network Operations Centre (NOC)
    • Emergency response and plan invocation
    • Consideration of the supporting information, equipment and systems required
    • Production of Situation Reports (SITREPS), activity logging and tools
  • Post incident review
    • Learning from incidents
    • The value of post-incident review
    • Post-incident process
• Audit and maintenance
  • What is the function of an IT audit?
  • Steering Committee and Terms of Reference (ToR’s)
  • Overriding management review and continuous improvement
  • Incorporating DR into the organization lifecycle processes and establishing virtual teams
  • DR documentation and working with internal and external audit functions

This course hasn't been scheduled yet, however you can request for In-House training