This page has been archived.
Information identified as archived on the Web is for reference, research or recordkeeping purposes. It has not been altered or updated after the date of archiving. Web pages that are archived on the Web are not subject to the Government of Canada Web Standards. As per the Communications Policy of the Government of Canada, you can request alternate formats on the "Contact Us" page.
An essential element of business continuity is the determination of when and where contingency plans should be developed and implemented. The following table provides steps to assist departments in making this determination. This procedure should be applied during the "analyze" step.
Steps | Description | Responsibility |
---|---|---|
1. Conduct a business impact analysis |
Using the prioritized mission-critical business function list and associated asset mappings from the "Identify" step, as well as the Risk Information Sheets from the "Analyze" step, conduct a business impact analysis. Input may also be required from the Year 2000 Project/Program Office with respect to progress on assets being made Year 2000 compliant. For each mission-critical business function: |
Function Owner |
a. Has a risk been associated with the mission critical
function or any of its mapped assets?
|
||
b. In addition to any risk assessment information, are any
assets that are mapped to the business function vulnerable to a Year 2000
failure?
|
||
c. Is the asset(s) that is considered to be vulnerable to a
Year 2000 failure required (or considered a significant contributor) in
delivering the business function's services/products (or delivering a minimal
acceptable level of service)?
|
||
2. Develop a draft/high level contingency for the entire business function? | For each business function associated with a known risk (Step 1-a) or has vulnerable assets from Step 1-c), develop a contingency plan to address a potential failure (can be total or limited to one or a combination of assets). | Function Owner |
Factors to consider at this stage
are:
|
||
3. Monitor Progress Report | For each mission-critical business function and mapped asset: | Function Owner |
a. Is there is a concern with the Year 2000
readiness based on variance in schedule, successive slippages, etc.?
|
||
b. Is the concern with the progress at a threshold
where the contingency should be triggered?
|
||
4. Monitor Continuous Risk Management Activities |
For each
mission-critical business function and mapped asset:
a. Are any of the identified risks materializing based on the indicators on the risk information sheets?
|
Function Owner |
b. Have new risks been identified?
|
||
5. Review the Verification and Validation reports (including audit reports) |
For each
mission-critical business function and mapped asset:
a. Is there is a concern with the Year 2000 readiness for an asset or function based on the verification and validation (or audit) report.?
|
Function Owner |
b. Is the concern with the progress at a threshold
where the contingency should be triggered?
|