It might be the case that you already take a risk-based approach to BCDR and are still wondering what extra steps you can take to prepare in the case of a natural disaster or other emergency event. Here’s what I recommend:
Readiness – Review a preparedness standard or guideline like the NFPA 1600 or FFIEC Business Continuity Planning booklet. Identify any gaps you might have in your planning.
Resources – Make sure government resource contacts are available for each of your offices for compliance and assistance. It can always help to have printed copies of important phone numbers as well as BCDR plans and procedures.
Communications – Have a communication plan available to your employees outlining specific steps of what will happen in different scenarios and how to access your information.
Coordinate – Use your platform to report incidents and communicate in emergency situations if your internal email system or other communication tools go down.
Refresh – Make sure contact information of critical personnel and vendors are up to date. Remind infrequent users how to access the system.
Prepare – Review RTO times for critical processes and applications ahead of time so that if an outage occurs, you already know what to prioritize.
Reflect – Use Incidents to track points of friction, confusion, or failure throughout the process so when things calm down, you can appropriately update exercises and plans as needed.