IT Service Continuity Management

Process Control

IT Service Continuity Management needs to prepare regular reports on its management providing information of relevance to the rest of the IT organisation.

These reports should include:

• Analysis of new risks and assessment of their impact.
• Evaluation of the disaster drills carried out.
• Prevention and recovery activities performed.
• Costs associated with the prevention and recovery plans.
• Preparation and training of IT personnel regarding the prevention and recovery plans and procedures.

One of the key factors in the success ofIT Service Continuity Management is remaining alert. After long periods when prevention, or simply good luck, have meant that there have been no serious interruptions to service it is possible to become too relaxed, which can have serious consequences.

It is therefore essential to make rigorous checks to ensure that the initial investment and commitment is not watered down and so to avoid ITSCM's failing to be up to the situation when its services are called upon and risking "turning a disaster into a catastrophe".

However, while controlling the process is important under normal circumstances it becomes critical during a crisis. ITSCM must guarantee:

• Implementation of the predefined plans.
• Supervision of the plans.
• Coordination with Business Continuity Management.
• The allocation of the necessary resources.