Add to collection(s) Add to saved
  1. Science
  2. Biology
  3. Cell Biology

DEPARTMENT CONTACT INFORMATION

advertisement 
Cal Poly
Business Continuity Plan
The following outlines general information/instructions on the Cal Poly Business Continuity
Plan. Specific instructions on how to complete the template1 are located on each page.
Revision History
Date
12/4/2013
By
ACS
Action
Sections
Modified the Business
1.1-3.1
Continuity Plan Template,
Reduced Priority Functions, and
created a Business Process
Guide.
Modified BCP Template
1.1-3.1
1/4/2013
ACS
Purpose
As part of the Emergency Management Program, Cal Poly will develop, document, test and
maintain a Business Continuity Plan (BCP). The plan will ensure the continuance of Mission
Essential Functions, critical systems, and vital services when a disruption to campus operations
occurs after a disaster or emergency situation2.
The attached Cal Poly Business Continuity template will be used for the consistent development
of the University’s Business Continuity Plan. The template will be used to document key
information (i.e., essential functions, staff contact information, critical system recovery
procedures, vital records, assets, business impact analysis, risk assessment, training, and
corrective action plans) within a department in order to ensure the campus’ ability to recover
from a disruption.
Emergency activities of departments, including requests for resources or services and
documentation of financial impact, will be coordinated through the Emergency Operations
Center and in compliance with the Campus Emergency Management Plan.
Department Business Continuity Plans, department Emergency Plans, and the campus
Emergency Management Plan are interrelated and together provide for preparation, response and
recovery to a campus emergency.
Responsibility
Each vice president will have the responsibility for the development, testing and maintenance of
the business continuity plans within his/her division. A representative from each department
should be assigned to develop and maintain the plan. The Business Continuity Planning
Committee will be responsible for the central review of all business continuity plans in
conjunction with each department.
1
Adapted with permission of Cal State San Marcos.
The highest hazards/threats to campus have been identified as: Civil Disturbance (Attack – War); Earthquake;
Explosion; Facility – Collapse; Fire – Wildland; Flood – Storm; and Hazardous Materials.
2
Page 1
Location of Plan
Each department should designate key department members to retain the plan. These members
should also be asked to keep the plan at their respective homes.
Access
The Business Continuity plan contains confidential information that should not be shared
publicly. It is the responsibility of each department to ensure that the plan be held, developed,
and reviewed by designated individuals only.
Mission Essential Function Departments (MEF):
A MEF is defined in CSU Executive Order 1014 as a “function that enables an organization to
provide vital services, exercise civil authority, maintain the safety and well-being of the general
public, or sustain the industrial or economic base during an emergency”.
The following departments have been identified as having a mission essential function (MEF):








List of Departments with M.E.F.
Academic Personnel
Contracts & Procurement
Facilities Services
Food Services
Housing & Residential Life
Human Resources
Research
University Scheduling







Page 2
Additional Departments with M.E.F.
Admissions, Recruitment & Financial Aid
Disability Resource Center
Fiscal Services
Health & Counseling Services
Information Technology Services
Instruction
University Police
BUSINESS CONTINUITY PLAN REVIEW
This sheet should be completed each time the Business Continuity Plan is reviewed, modified,
updated and/or tested. The Business Continuity Plan must be reviewed annually.
Date
By
Action
Section
SIGNATURES
Dates of Signatures
Department Manager
Date
Provost / Vice President
Date
Business Continuity Planning Committee
Date
Page 3
IDENTIFY PRIORITY FUNCTIONS DEPARTMENT PERFORMS
List functions by priority (timeframe in which this function must be resumed) using priority
categories below. Provide a brief description of that function, and list the position that has lead
responsibility. Use the notes section for additional comments.
Priority 1 –
Priority 2 –
Priority 3 –
Number
Critical: first 24 hours
Vital: 72 hours
Operational: 4-15+ days
Priority 1 - Critical Functions Department Performs that
must be resumed within 24 hours
Lead
Priority 2 - Vital Functions Department Performs that
must be resumed within 72 hours
Lead
Priority 3 - Operational Functions Department Performs
that must be resumed within 4-15+ days
Lead
1.1
1.2
1.3
Notes:
Number
2.1
2.2
2.3
Notes:
Number
3.1
3.2
3.3
Notes:
Page 4
PRIORITY 1 CRITICAL FUNCTIONS DEPARTMENT PERFORMS
THAT MUST BE RESUMED WITHIN 24 HOURS
Complete for each Priority 1 Critical Function identified above.
Number
1.1
Critical Function Department Performs
Lead
Procedures
Identify actions to resume Critical Function, assuming that computer systems or utilities may not
be operational. Identify position that has lead responsibility for each step.
Step
Action
Lead
1.
2.
3.
The following sections should be completed if the Critical Function is dependent upon entering
or retrieving data that may be lost in the event of a computer, network, or utility system failure.
Data Recovery
Identify actions to retrieve lost data in case of computer system failure. Identify position that has
lead responsibility for each step.
Step
Action
Lead
1.
2.
3.
Data Entry Controls
Identify actions to enter lost or manual transactions/data once system functionality has resumed.
Identify position that has lead responsibility for each step.
Step
Action
Lead
1.
2.
3.
Page 5
PRIORITY 2 VITAL FUNCTIONS DEPARTMENT PERFORMS
THAT MUST BE RESUMED WITHIN 72 HOURS
Complete for each Priority 2 Essential Function identified above.
Number
2.1
Vital Function Department Performs
Lead
Procedures
Identify actions to be taken to resume Vital Function, assuming that mission-critical, computer
systems or utilities may not be available. Identify position that has lead responsibility for each
step.
Step
Action
Lead
1.
2.
3.
The following sections should be completed if the Vital Function is dependent upon entering or
retrieving data that could be lost in the event of a computer, network, or utility system failure.
Data Recovery
Identify actions to retrieve lost data in case of computer system failure. Identify position that has
lead responsibility for each step.
Step
Action
Lead
1.
2.
3.
Data Entry Controls
Identify actions to enter lost or manual transactions/data once system functionality has resumed.
Identify position that has lead responsibility for each step.
Step
Action
Lead
1.
2.
3.
Page 6
PRIORITY 3 –OPERATIONAL FUNCTIONS DEPARTMENT PERFORMS THAT
MUST BE RESUMED WITHIN 4-15+ DAYS
Complete for each Priority 3 Operational Function listed above.
Number
Maintenance and Recovery Function Department
Performs
Lead
3.1
Procedures
Identify actions to be taken to resume Operational Function, assuming that mission-critical
computer system or utilities may not be available. Identify position that has lead responsibility for
each step.
Step
Action
Lead
1.
2.
3.
4.
The following sections should be completed if the Operational Function is dependent upon
entering or retrieving data that could be lost in the event of a computer, network, or utility
system failure.
Data Recovery
Identify actions to be taken to retrieve lost data in case of computer system failure. Identify
position that has lead responsibility for each step.
Step
Action
Lead
1.
2.
3.
Data Entry Controls
Identify actions for entering lost or manual transactions/data once system functionality has
resumed.
Step
Action
Lead
1.
2.
3.
Page 7
Department Name
Cal Poly Business Continuity Plan
DEPARTMENT CONTACT INFORMATION
Enter name (in alphabetical order) and contact information for key departmental personnel.
This information should be treated as confidential and kept in a secured location. Staff members
whose names are listed have been assigned “Lead Responsibilities” and have been notified of
their responsibilities.
Name
Position
,
Last Name, First Name
Telephone
Work:
Home:
Cell:
Alt. (non-CP) Email:
Work:
Home:
Cell:
Alt. Email:
Work:
Home:
Cell:
Alt. Email:
Work:
Home:
Cell:
Alt. Email:
,
,
,
Page 8
Department Name
Cal Poly Business Continuity Plan
LINES OF SUCCESSION/ DELEGATION OF AUTHORITY
Enter name (in Line of Succession) and contact information for key management and supervisory
personnel. This information should be treated as confidential and kept in a secured location.
Include organizational charts or other documentation as needed.
# Name
1.
,
Last Name, First Name
2.
,
3.
,
Position
Page 9
Telephone
Work:
Home:
Cell:
Alt. (non-CP) Email:
Work:
Home:
Cell:
Alt. Email:
Work:
Home:
Cell:
Alt. Email:
Department Name
Cal Poly Business Continuity Plan
EQUIPMENT, UTILITY AND TELECOMMUNICATION
REQUIREMENTS
List equipment, utility, and telecommunication requirements needed to perform Priority 1
Critical, Priority 2 Vital, AND Priority 3 Operational Functions.
1.
2.
3.
4.
5.
6.
7.
8.
9.
10.
DOCUMENT AND SUPPLY REQUIREMENTS
List unique documents and supplies needed to perform Priority 1 Critical and Priority 2 Vital
Functions (contact/vendor lists, forms, manuals, instructions, ledger paper, calculator, general
office supplies, etc.). Documents and supplies listed should be placed in an emergency supply
box that is kept in a location other than the department office.
1.
2.
3.
4.
5.
6.
7.
8.
9.
10.
Page 10
Department Name
Cal Poly Business Continuity Plan
VENDOR/AGENCY CONTACT INFORMATION
Enter company/agency name (in alphabetical order), address, contact name/telephone, and types
of information, services, or products they may provide to support critical and vital functions.
Company/Agency
Name
Address
Contact Name/
Telephone/Email
Page 11
Information
Department Name
Cal Poly Business Continuity Plan
VITAL RECORDS PROTECTION
List vital records for which the department maintains; how these records are stored (fire proof
file cabinet, etc.); and if records are duplicated or backed up and kept at an offsite location.
Vital Record
Location & Storage
Method
Duplicated
& Kept
Offsite?
Offsite Location
1.
2.
3.
4.
5.
6.
7.
8.
If Vital Records are not duplicated and stored offsite, identify how documents and/or critical
information will be reconstructed or restored if lost.
Vital Record
Reconstruction/Restoration Procedures
1.
2.
3.
4.
5.
6.
7.
8.
Page 12
Department Name
Business Continuity Plan
ALTERNATE OPERATING FACILITIES
Please list alternate operating facilities to be used to sustain operations for a period of up to
thirty days.
LOCATION
CONTACT PERSON
CONTACT NUMBERS
WORK:
HOME:
CELL:
ALT. (NON-CP) EMAIL:
WORK:
HOME:
CELL:
ALT. EMAIL:
WORK:
HOME:
CELL:
ALT. EMAIL:
List initial arrival procedures and any additional operational procedures. Review staffing, vendor
support, critical communications and resources needed at this facility.
Arrival and Operational Procedures
1.
2.
3.
4.
5.
6.
7.
8.
Page 13
Department Name
Business Continuity Plan
DEPARTMENTAL COMMUNICATIONS
List communication methods such as planned meetings, informational websites and email
correspondence used to communicate with internal departmental employees, other campus
departments, outside agencies, and emergency personnel.
Communication Methods
To whom?
Frequency
or Training
(staff, other departments/agencies)
Page 14
Department Name
Business Continuity Plan
TESTING OF PLAN
No operations resumption plan is ever complete. As ways of doing business change, so must the
plan. There is no better way to keep the plan current than by testing its accuracy and logic
regularly. Various types of tests may be used, depending on the evolving needs of participants
and changes in the plan. Tests should be carefully planned to minimize disruption to normal
operations. These tests should be documented so that correction actions/recommendations
arising from these tests can be implemented. After each test exercise, documented results should
be thoroughly reviewed for flaws, omissions, and overlaps in the business resumption
procedures. Test results shall be maintained for audit documentation.
Business units shall test some part of their business continuity plan once a year, with all
parts tested every seven years. The attached Corrective Action Plan (CAP) must be
included with a business unit’s continuity plan after each testing period. The Corrective
Action Plan is designed to identify gaps in BCP procedures, in order to improve processes
for more efficient and effective outcomes.
Testing may be in the form of:
Tabletop walk-through (key stakeholders are convened in a room and they perform a detailed
review of the plan) - Many small events are described and the participants are asked to state
how the plan would guide their reactions. This prepares members for simulation and operation
testing.
Simulation Testing (paper and pencil simulations) - Teams are placed at tables representing
their responsibilities and are presented with the description of an evolving disaster.
Operation Testing (actual test) – Call back, assembly of response team, use of backup materials;
installing of systems and loading of data.
Actual Event – Responding to an actual event meets the requirements for “all parts tested every
seven years.”
Date of Test
Type of Test
T = Tabletop; O = Operation;
S = Simulation
1.
2.
3.
4.
5.
6.
7.
8.
9.
10.
Page 15
Corrective
Actions/Recommendations
Related documents
Lecture 7 - mh-lectures.co.uk
Lecture 7 - mh-lectures.co.uk
Battle Box - ABC Solutions
Battle Box - ABC Solutions
Running an Exercise - Suffolk Resilience
Running an Exercise - Suffolk Resilience
Society and Culture Outline - Liverpool Girls` High School
Society and Culture Outline - Liverpool Girls` High School
Where? Which media?
Where? Which media?
View Profile
View Profile
Chapter 2: Classical Civilizations : China
Chapter 2: Classical Civilizations : China
Business Continuity
Business Continuity
StewartCalcET7e_14_02
StewartCalcET7e_14_02
Tendering - Supplier Development Programme
Tendering - Supplier Development Programme
Download
advertisement