1- Assume that you have been hired by a small to medium organization to help them prepare a contingency planning document. You may choose any organization (or practice). Some examples are: clinic, veterinary practice, credit union, tax preparation office, event management company, accounting firm, real state agency, etc… (Please DO NOT use an ISP as your organization)
2- To help with the preparation of the business contingency document, you conduct a Business Impact Analysis (BIA), following the BIA three stages:
1. Stage 1: Assessing mission critical /business processes and recovery criticality (limit the number of business processes to 5 only).
2. Out of the list in the previous step, choose 2 business missions that are related to information technology and information security.
3. Stage 2: Identifying resource requirements per mission process.
4. Stage 3: Identifying recovery priorities per mission process.
3- Use NIST SP800-34-Rev1-BIA-Template to prepare the BIA . The template file is provided with this assignment, and available at https://csrc.nist.gov/CSRC/media/Publications/sp/800-34/rev-1/final/documents/sp800-34-rev1_bia_template.docx ).
4- Your completed BIA should not exceed 6 pages.