To undertake this assessment students will need to select an event related organisation of their own choice as the context and background to allow students to develop knowledge, skills and application...

Last Name:    2
Business Continuity Plan for Iceberg Events
Table of Contents
Overview    3
Risk Management Plan    4
Business Impact Analysis    6
The Continuity Plan    8
The Emergency Plan    9
The Recovery Plan    10
References    12
Overview
Regardless of the business, purpose, region, or finances, every organisation should have a very well-tested business continuity strategy. The continuity plan also serves as a contingency option in the event of a disaster. The strategy guarantees that the firm's functionality is maintained in the case of an attack. Being inaccessible to clients can harm a business image in the ever-changing technological environment of rivalry among like-minded firms. A business continuity plan does not have to be complicated or expensive, but it does need to be tailored to the organization’s needs and operations. In the event of an unanticipated scenario, a solid, appropriate strategy may make a world of difference.
With the rising number of threats and attacks throughout the world, it is more important than ever for businesses to have a backup plan in case of a crisis. Natural disasters, such as earthquakes and flooding, might pose a hazard. In the event of a disaster, the company should have a well-thought-out business continuity strategy in place to keep operations operating smoothly. The processes and methods of a business continuity plan allow a company to recover from a catastrophe in the case of an attack.
The business continuity plan for Iceberg Events will be presented in this paper. This business continuity plan includes preventative measures such as an intrusion detection system (IDS), antivirus programs, and a firewall, all of which are important components of the strategy. However, while it is impossible to eradicate all hazards, preventative measures such as strategic models can help to reduce the effect and preserve control in circumstances. Companies may use business continuity planning and testing to assess the need for preparedness while also assessing their attentiveness.
Risk Management Plan
Risk identification: To identify and prioritise the risks that constitute a danger to the organization's business, a complete risk assessment will be conducted. It is critical to understand that risk assessment is critical to developing an acceptable contingency plan. Without a comprehensive risk assessment, we risk missing critical information and jeopardising the contingency plan's effectiveness.
Implementation: To guarantee that a risk management plan is in place appropriately, it should be written step by step. It will have a comprehensive continuity strategy in place if the organisation is disrupted by an emergency. Each member of the incident response team knows what is expected of them thanks to well-documented instructions, which helps to avoid much of the turmoil that frequently follows disasters[footnoteRef:2]. [2: Hillson, David, and Peter Simon. Practical project risk management: The ATOM methodology. Berrett-Koehler Publishers, 2020.]
Testing: It is vital to put the strategy you have created to the test. A well-organized simulation will aid in the detection of any flaws. If the testing procedure goes well, a review will be conducted, which will be well-documented. We will test our contingency plan once a year to verify that everyone understands their responsibilities in the event of an emergency. Employees who have a part to play in the strategy must also be sufficiently trained and capable of carrying out the job requirements. It is critical that training emphasise the most recent technological breakthroughs. The managers should examine and arrange the business continuity plans, disaster recovery plans, and crisis response plans before implementing control measures. Notification protocols, recovery team communication mechanisms, system platform alternatives, and backup storage will all be thoroughly tested. Function, tabletop, and full-scale testing are some of the numerous sorts of tests that may be used.
Tabletop tests simulate crisis circumstances in a safe, casual atmosphere, allowing for a calm and productive discussion of the topic[footnoteRef:3]. The strategy is cost-effective and causes the least amount of employee interruption possible. Drills are employed during the testing procedure to enable automatic activation of a response based on routine and repetition. Policies and procedures are put to the test in a realistic, timed setting during the functional exercise. These drills help assess how quickly personnel will react in an emergency. [3: Abbinante, Vicki M. "Policy decisions and options-based responses to active shooters in public schools." Ph.D. diss., Walden University, 2017.
]
Application testing, crisis command team testing, technical swing testing from alternate and principal work sites, and business process testing should all be included in the testing process[footnoteRef:4]. This should be done once a year. Computer software, hard drives, hardware, portable workstations, and both primary and backup power supplies should all be tested as part of the test process. [4: Nicolae Steiner, M. D. "BUSINESS CONTINUITY PLANNING ACTIVITIES (COOP)." Management 22, no. 2 (2018): 18-20.]
Update
Technology, procedures, people, and infrastructure may all...