The Limitations of Business Continuity Planning

A new survey by Symantec suggests that more than nine out of ten UK organisations carry out full evaluations of their disaster recovery plans but almost half of the tests fail. Should we be surprised by these figures? Absolutely not. In fact the figures are quite encouraging. We must be making progress. Because I’ve encountered an awful lot of critical business processes without proper continuity plans. And where they do exist, they’re often incomplete, out of date and generally fail when tested.

Business continuity planning is a thankless, time-consuming and messy activity. It’s not an exact science. More of a painfully slow journey in progressively improving the disaster response process, with frequent setbacks when any restructuring or reengineering takes place. You can’t outsource the work to consultants because business managers have to manage the process, so they need to be fully engaged in all aspects of the work. That’s assuming of course that they can be persuaded to set aside the time and budget to stay on top of developments.

And it’s not uncommon to discover that there simply is no viable fallback option, either because of limitations in infrastructure design or the sheer expense of a replacement facility. Of course it’s relatively easy to replace modern IT infrastructure, and that was probably the context of this survey. The hard bit is buildings, plants and people.

Join the conversation


Send me notifications when other members comment.

Please create a username to comment.

Well said my friend. It is a fact that many people do ignore desktop security in their quest for perfect network security. It is tough too to find a good reliable program that offers solid vulnerability management. Many of the programs I’ve used too have only partially protected my network and its computers. I’d have to say right now that hands down eEye applications have done their jobs better than any others I’ve tried. I know that you too use their applications for network security and I think you’d agree that when it comes to endpoint security there’s none better than what they offer. I’ve argued this with several of my contemporaries and they believe I need to do more security research. I disagree with them every time and simply tell them that I’m already using the most comprehensive security applications available.
Great Article! You might also want to also check out the recent articles on changes in the continuity industry on BCP News -