Professional Documents
Culture Documents
Isc2 Cissp 1 9 1 Identify & Analyze & Prioritize BC Requirements
Isc2 Cissp 1 9 1 Identify & Analyze & Prioritize BC Requirements
Objectives:
Understand and apply the recommended guidance to identify, analyze & prioritize
Business Continuity (BC) requirements through your daily practice as an
information security professional.
External Resources:
Project Management
Senior Management Support (*)
Project Scope
Resources
Timeline
Goals:
1. Determine Criticality
2. Estimate Maximum Downtime
3. Evaluate Internal and External Resource Requirements
Process Steps:
1. Gather requirements/information
2. Vulnerability assessment
3. Risk Analysis
Quantitative - ALE = SLE * ARO ===> ALE = (AV*EF) * ARO
Qualitative
4. Communicate findings - Audience relevancy
Determining Downtime: