BUSINESS CONTINUITY MANAGEMENT
BUSINESS CONTINUITY RISK ANALYSIS
BUSINESS FUNCTION DETAILS
Name of Business Unit
For example Global markets.
Please provide an organisational chart in
Number of employees in this Business Unit
Name of sub-department
For example Payments Operations, Reconciliation,
Number of employees in this sub-department
Location of this sub-department
City, building, floor, or multiples
Name & job title of person completing BIA
For reference when the BCRA is revisited next year
Phone number & E-mail address
Internal number with full code & internal e-mail address
Date questionnaire completed
The BCRA must be revised every year
BUSINESS CONTINUITY RISK ASSESSMENT
This Business Continuity Risk Assessment (BCRA) demonstrates a qualitative methodology of a Threats & Vulnerability
assessment. It prioritises potential disasters on the basis of their probability and impact.
The scale used in the assessment is from 1 to 5.
1 - Denotes a very low probability or a very low impact.
2 - Denotes a low probability or a low impact
3 - Denotes a medium probability or a medium impact.
4 - Denotes a high probability or a high impact
5 - Denotes a very high probability or a very high impact.
In the column "Systems Impact", the impact on Telecom & Networks is to be assessed.
The value in column "Score" is arrived at by the following formula:
Score = (Probability * Business Impact) * (Human Impact + Property Impact + System Impact)
The BCRA is required to be assessed for each location (building/group of buildings) separately.
The BCRA is to be reviewed every six months.
Although filling in the BCRA is meant to be objective, some subjectivity in inevitable.
Business Human Property Systems
Type of Emergency Probability