Treasury Board of Canada Secretariat
Symbol of the Government of Canada

ARCHIVED - A Guide to Effective Business Continuity in Support of the Year 2000 Challenge

Warning This page has been archived.

Archived Content

Information identified as archived on the Web is for reference, research or recordkeeping purposes. It has not been altered or updated after the date of archiving. Web pages that are archived on the Web are not subject to the Government of Canada Web Standards. As per the Communications Policy of the Government of Canada, you can request alternate formats on the "Contact Us" page.

Appendix U  -  "Control" Detailed Procedures

Process Overview

Risk control takes place upon identifying variances to the risk level and plans established as part of the "Plan" step. The following table provides procedures to perform the "Control" step.

Table U-1: Detailed Control Procedure

Control Steps



1. Analyze status reports
The Year 2000 Project Manager, risk owner, and plan owners are to analyze the status reports provided through the "Track" activity in order to determine trends, deviations, or anomalies – this can be conducted using "cause-and-effect" analysis.

The goal of this step is to clearly understand the status of each risk and plan in order to determine if further actions are required.

Year 2000 Project Manager
2. Decide on further actions.
Using the knowledge gained from the analysis step, the Project Manager must decide one of the following next steps: Year 2000 Project Manager
  • Continue tracking and executing the current plan - if risk is NOT materializing;
  • Re-plan and make updates to the Risk Information Sheet/Plan - as required to develop more effective risk mitigation;
  • Invoke the contingency identified on the Risk Information Sheet or invoke the escalation process - if a risk is materializing or has an increased likelihood of materializing; or
  • Close the risk/Stop work - if the risk has disappeared or work is completed to the satisfaction of the Project Manager.
  • At any time where issues cannot be resolved then escalation to the governance structure is required.
3. Execute the next step.
Implement the "control" decision from step #2 above. Year 2000 Project Manger or other Risk Owner

Note: The responsibility currently assigned to the Year 2000 Project Manager can be delegated to other members of the organization including audit.