Continuity management COPL

(unchanged)

The provision of service continuity planning and support, as part of, or in close cooperation with, the function which plans business continuity for the whole organisation. The identification of information systems which support critical business processes. The assessment of risks to critical systems' availability, integrity and confidentiality. The co-ordination of planning, designing, testing and maintenance procedures and contingency plans to address exposures and maintain agreed levels of continuity.

Continuity management: Level 6

(new)

Has defined authority and accountability for the actions and decisions within the business continuity area of work. Sets the strategy for continuity management across the organisation including allocating the funding for the appropriate technical and personnel resources.

Continuity management: Level 5

(unchanged)

Leads the development and implementation of a continuity management plan. Identifies information and communication systems that support the critical business processes and manages the relationship with specialists with authority for those systems. Evaluates the critical risks associated with systems operation and identifies priority areas for improvement. Designs and implements a testing strategy to ensure that continuity plans and procedures address exposure to risk and that agreed levels of continuity are maintained.

Continuity management: Level 4

(unchanged)

Implements and contributes to the development of a continuity management plan. Coordinates the assessment of risks to the availability, integrity and confidentiality of systems that support critical business processes. Coordinates the planning, designing, and testing of maintenance procedures and contingency plans.

Continuity management: Level 3

(new)

Performs the activities necessary to achieve an effective continuity plan including its routine testing. Maintains business-wide documentation of business continuity and disaster recovery plans. Maintains records of all related testing and training and ensures the availability of all documentation as, where and when required.

Continuity management: Level 2

(new)

Records the actions taken and the consequences for a lesson learned report post incident.