This update appears to be a restructuring of the document to make it more organized, shorter, and better focused on the importance of recovery planning. Designing a process to preserve the integrity and availability of data from threats. The FFIEC states, “Business continuity also includes the continued maintenance of systems and controls for the resilience and continuity of operations. When preparing for a business continuity audit, this handbook offers a detailed guide for various audit activities. The FFIEC also publishes a work program that helps professionals prepare for the business continuity program examination the FFIEC administers. The focus of this webinar is to discuss the updates to the FFIEC Business Continuity Management Booklet and other resilience topics. On November 14, 2019, the FFIEC published an updated Business Continuity Management booklet. Major Booklet Restructuring. Data protection strategies typically include a combination of backup, replication, and storage to achieve different levels of continuity and resilience. As you may have already seen, the FFIEC pushed out a press release informing the public of the new Business Continuity Management (BCM) Booklet on November 14, 2019. In March 2008, an updated version of the booklet was published. Examiners are encouraged to determine whether management documented and implemented, as appropriate, resilience measures for third-party service providers. Nonfinancial organizations can also benefit from the handbook to perform assessments and conduct audits of their business continuity … This "Business Continuity Management" booklet is one in a series of booklets that comprise the Federal Financial Institutions Examination Council (FFIEC) Information Technology (IT) Examination Handbook. For example, some entities use internally developed assets (e.g., spreadsheets or other tools) that are critical for certain calculations within a business unit, which are often overlooked, including where and how they are stored, during the risk assessment and BIA processes. For example, it may be appropriate to deploy more automated, scalable solutions, such as data replication to a cloud. Address critical business risks in the operating environment (e.g., mitigate specific or unique threats, such as cyber threats or loss of critical third-party service providers). The long-term goal of the InfoBase is to provide just-in-time training for new regulations and for other topics of specific concern to examiners in the five FFIEC member agencies. The Federal Financial Institutions Examination Council (FFIEC) has issued the Business Continuity Management Booklet, which is part of the FFIEC Information Technology Examination Handbook. The 2019 edition of the Federal Financial Institutions Examination Council's Business Continuity Management handbook can serve as a tool to help guide BC plans for both financial and nonfinancial organizations. The Ultimate Guide To Business Continuity Management for Banks and Credit Unions By Tom Hinkel. As is typical when new guidance is released, there is some level of panic, uncertainty, and confusion about what must be done in order to remain compliant. Pandemic preparedness is an important part of a financial institution’s business continuity planning. The revised booklet replaces the "Business Continuity Planning" booklet issued in February … Friday, April 10, 2020 11:00 am– 1:00 pm Eastern. Technology-related strategies may include fully equipped backup data centers or cloud providers. The FFIEC has now made the biggest and boldest statement to date by stating that Business Continuity Management should report into Enterprise Risk Management. For example, the increased reliance on and interconnectivity of technology makes it less feasible for many entities to operate manually for an extended period, if at all. Agency Rule-Making & Guidance FFIEC Examination OCC. What was once called Business Continuity Planning (BCP) is now Business Continuity Management (BCM). This Federal Financial Institutions Examination Council (FFIEC) Business Continuity Planningbooklet provides guidance and examination procedures to assist examiners in evaluating financial institution and service provider risk management processes to ensure the availability of critical financial services. Examiners should review BCM strategies and determine whether the strategies: Business continuity strategies are developed after the BIA and risk assessment process. Management should consider strategies to mitigate specific or unique threats, such as cyber threats or loss of critical third-party service providers. The updated Business Continuity Management (BCM) booklet is a complete overhaul of the 2015 updated BCP booklet, which added the famous Appendix J to Strengthening the Resilience of Outsourced Technology Services. The Federal Financial Institutions Examination Council ("FFIEC") reminded financial institutions that their business continuity plans should include preparations in the event of a pandemic outbreak. The revised booklet provides information for examiners to assess the adequacy of a bank's risk management related to the availability of critical financial products and services. Read more … Mini-Series Part 3 – FFIEC Requirements – Business Continuity Planning Oversite. The BCM Booklet describes principles and practices for IT and operations for safety and soundness, consumer financial … Das amerikanische Federal Financial Institutions Examination Council FFIEC hat im März eine aktualisierte Fassung des Business Continuity Planning Booklets veröffentlicht. Backup strategies should include data files, operating systems, and applications and utilities. What was once called Business Continuity Planning (BCP) is now Business Continuity Management (BCM). The FFIEC revised the "Business Continuity Management" booklet of its Information Technology Examination Handbook. ISO 22313:2012, Societal Security -- Business Continuity Management Systems -- Guidance, provides additional details on the requirements stated in ISO 22301:2019. Management should determine what alternatives exist for proprietary systems given the significant, unique risks to an entity’s business activities. The long-term goal of the InfoBase is to provide just-in-time training for new regulations and for other topics of specific concern to examiners in the five FFIEC member agencies. Business continuity should be incorporated into the risk management life cycle of all systems, processes, and operations of an organization The recent changes to the FFIEC “ Business Continuity Management ” (BCM) booklet hold significance for financial institutions across the United States. Financial institutions use the FFIEC Business Continuity Management handbook as a planning, design and audit tool, because it provides detailed guidance on all aspects of BC plan development and the many supporting activities associated with a business continuity program. The FFIEC makes it clear that BCP is a business issue, not an IT issue. The Federal Financial Institutions Examination Council (FFIEC) issued the Business Continuity Management (BCM) booklet, which is part of the FFIEC Information Technology Examination Handbook. Business continuity is an integral part of the risk management life cycle of an entity’s systems, processes, and operations.” On November 14, 2019, the Federal Financial Institutions Examination Council (FFIEC) released the revised version of the “Business Continuity Management” booklet, which is part of a series of booklets that make up the FFIEC Information Technology Examination Handbook (IT Handbook). The 2015 booklet was titled “Business Continuity Planning” versus the updated version titled “Business Continuity Management.” The IT Handbook is available at http://ithandbook.ffiec.gov/. The FFIEC - which includes representatives of the Federal Reserve System, FDIC, National Credit Union Administration, OCC, CFPB and State Liaison Committee - published an updated version … Statement of Applicability … Include provisions for appropriate international business activities, where applicable. While some updates were made to the co… Business Continuity/Disaster Recovery: Executive Summary of FFIEC IT Examination Handbook Thomas Donchez • June 3, 2008 Twitter Download Booklet
Cloud solutions may provide a cost-effective and high-availability environment. The following IT topics are available via this InfoBase: Audit, Business Continuity Planning, Development and Acquisition, E-Banking, FedLine, Information Security, Management, Operations, Outsourcing Technology Services, Retail … The US Federal Financial Institutions Examination Council (FFIEC) has published a revised Business Continuity Planning Booklet, which is part of the FFIEC Information Technology Examination Handbook. Whether you’re striving to build a business continuity (BC) program compliant with FFIEC, ISO 22301, NIST 800, NFPA 1600, SEC business continuity requirements, or any other set of industry standards, one truth applies across the board: To be effective and compliant at any level, business continuity, by definition, must be considered a continuous cycle—not a once-and-done exercise. The IT Handbook is available at http://ithandbook.ffiec.gov/ This Federal Financial Institutions Examination Council (FFIEC) Business Continuity Planning booklet provides guidance and examination procedures to assist examiners in evaluating financial institution and service provider risk management processes to ensure the availability of critical financial services. The Business Continuity Management booklet is part of the FFIEC Information Technology Examination Handbook (IT Handbook) and replaces the Business Continuity Planning booklet issued in February 2015. The Federal Financial Institutions Examination Council (FFIEC) today updated guidance identifying actions that financial institutions should take to minimize the potential adverse effects of a pandemic. One major change is the name of the booklet. Guidance from the Federal Financial Institutions Examination Council (FFIEC) makes it clear that, in the financial services industry, recovering IT systems quickly after an outage is no longer good enough. The updated Business Continuity Management (BCM) booklet is a complete overhaul of the 2015 updated BCP booklet, which added the famous Appendix J to Strengthening the Resilience of Outsourced Technology Services. With the publication of this booklet, the FFIEC member agencies replace the “Business Continuity Planning” booklet issued in February 2015. A few weeks ago, the FFIEC released an updated version of its Business Continuity Management booklet, which is one of the eleven booklets that make up the FFIEC’s IT Examination Handbook.. Plan vs. Management. Download MSSP WorkProgram, Supervision of Technology Service Providers, II Business Continuity Management Governance, II.A Board and Senior Management Responsibilities, III.A.1 Identification of Critical Business Functions, VII.I Third-Party Service Provider Testing, VII.J Testing for Core and Significant Firms, VII.K Post-Exercise and Post-Test Actions. The FFIEC released a complete re-write of the Business Continuity Planning booklet on November 14, 2019 titled Business Continuity Management. In addition, management may establish alternate methods for communicating with employees, customers, and external parties. The Federal Financial Institutions Examination Council (FFIEC) today issued updated guidance for examiners, financial institutions, and technology service providers to identify business continuity risks and evaluate controls and risk management practices for effective business continuity planning. Management needs to establish a clear action plan and test the action plan regularly. Reviewing business continuity operating results and performance through management reporting, testing, and auditing. The Federal Financial Institutions Examination Council (FFIEC) – which is comprised of five banking regulators, including the NCUA and CFPB, and state regulator representatives – Wednesday released an updated Business Continuity Management booklet focused on business-wide approaches to ensure operations are not disrupted or can easily recover after a disaster. The focus of this webinar is to discuss the updates to the FFIEC Business Continuity Management Booklet and other resilience topics. The IT Handbook is prepared for use by examiners. As is expected of a new guidance release, many questions are being asked: “What does the new booklet say?” “How is it different from previous versions?” may be considered as part of resilience programs. Include alternatives for any proprietary systems. Furthermore, on Page 7 of the handbook, it specifically illustrates this. Integrating operational, continuity, and resilience strategies to protect data based on recovery objectives. The pandemic plan has no defined action plan, nor has it been tested. Whether you’re striving to build a business continuity (BC) program compliant with FFIEC, ISO 22301, NIST 800, NFPA 1600, SEC business continuity requirements, or any other set of industry standards, one truth applies across the board: To be effective and compliant at any level, business continuity, by definition, must be considered a continuous cycle—not a once-and-done exercise. Revised business continuity guidelines signal change. In November 2019, the FFIEC released a revised version of their IT handbook for examiners. Guidance from the Federal Financial Institutions Examination Council (FFIEC) makes it clear that, in the financial services industry, recovering IT systems quickly after an outage is no longer good enough. The Business Continuity Managementbooklet is part of the FFIEC Information Technology Examination Handbook (IT Handbook) and replaces the Business Continuity Planning booklet issued in February 2015. The “Business Continuity Management” (BCM) booklet is one in a series of booklets that comprise the Federal Financial Institutions Examination Council (FFIEC) Information Technology Examination Handbook (IT Handbook). On November 14, 2019, the Federal Financial Institutions Examination Council (FFIEC) released an updated Business Continuity Management (BCM) booklet, as part of their IT Examination Handbook. What is the FFIEC Business Continuity Booklet? The 2015 booklet was titled “Business Continuity Planning” versus the updated version titled “Business Continuity Management.” The FFIEC released a complete re-write of the Business Continuity Planning booklet on November 14, 2019 titled Business Continuity Management. Updated FFIEC IT Examination Handbook - Business Continuity Management Booklet Summary: The Federal Financial Institutions Examination Council (FFIEC) issued the Business Continuity Management (BCM) booklet, which is part of the FFIEC Information Technology Examination Handbook. The FFIEC released a complete re-write of the Business Continuity Planning booklet on November 14, 2019 titled Business Continuity Management. In November, the Federal Financial Institutions Examination Council (FFIEC) released a new handbook specific to Business Continuity Planning (BCP). FFIEC Rewrites Business Continuity Guidance Your recovery plan (the traditional Business Continuity Plan) is now simply a sub-section in your overall Business Continuity Management (BCM) document The all new IT Examination Handbook is more than an update, it’s a complete re-write, and represents a significant change in how the business continuity process is managed. Providing a credible challenge A credible challenge involves being actively engaged, asking thoughtful questions, and exercising independent judgment. The FFIEC’s recent release of its Business Continuity Management handbook sets critical new paradigms for FS examiners, signaling a shift to operational resilience.. As the 2019 FFIEC Business Continuity booklet states, this integration “allows for the identification and management of risks across the entire entity.” This point of clarification helps identify where the business continuity program should live and ultimately report, track, and resolve identified risks/gaps based on a more strategic prioritization. Provide for high redundancy levels in the telecommunications infrastructure. Revised business continuity guidelines signal change. These strategies should be risk-based and address all foreseeable risks, including non-technology risks (e.g., transaction, liquidity, and reputation risks). Dear Board of Directors: The purpose of this letter is to inform you the Federal Financial Institution Examination Council (FFIEC) 1 issued updated guidance for examiners, credit unions, and technology service providers to identify business continuity risks, evaluate controls, and implement risk management practices for effective business continuity planning. Mini Series Part 6 – FFIEC Business Continuity Planning. The FFIEC states, “Business continuity also includes the continued maintenance of systems and controls for the resilience and continuity of operations. Download IT WorkProgram
Strategies should be validated to confirm that they are viable and sufficient for peak work volumes. Business Continuity Planning Booklet - March 2008 FFIEC IT Examination Handbook Page 1 INTRODUCTION This booklet is one in a series of booklets that comprise the Federal Financial Institutions Examination Council (FFIEC) Information Technology (IT) Examination Independent of the strategies selected for architecture and data protection, management should still be responsible for data integrity and overall resilience. The FFIEC update to its Information Technology Examination Handbook (IT Handbook) booklet on business continuity planning in 2019 gave it a new title to match its new outlook. On November 14, 2019, the Federal Financial Institutions Examination Council (FFIEC) announced they updated and renamed the Business Continuity Planning booklet within their IT Examination Handbook to Business Continuity Management (BCM). Das BCP-Handbuch ist Teil einer Sammlung des IT Examination Handbooks des FFIEC. Cloud-based disaster recovery servicesRefer to the FFIEC’s statement on Outsourced Cloud Computing. The board and senior management should develop effective strategies to meet resilience and recovery objectives. Outline a combination of backup, replication, and storage methods for data protection. The booklet replaces the Business Continuity Planning booklet issued in February 2015. The booklet replaces the Business Continuity Planning booklet issued in February 2015. Senior management and the board of directors are challenged to provide the governance and oversight over an FI’s cybersecurity and business continuity programs. The FFIEC released a major update to its Business Continuity Planning booklet, renaming the guidance "Business Continuity Management." Monitoring the effectiveness and efficiency of data protection solutions. The following IT topics are available via this InfoBase: Audit, Business Continuity Planning, Development and Acquisition, E-Banking, FedLine, Information Security, Management, Operations, Outsourcing Technology Services, Retail … One major change is the name of the booklet. Management should develop comprehensive strategies to protect data, such as: Strategies should address critical business risks in the operating environment. One thing I forgot to tell you in my last post on the FFIEC IT Handbook – in virtually every section of the IT Handbook you’ll find an entire segment on “roles and responsibilities” – An area that defines who and who shouldn’t be performing certain duties/roles. The first FFIEC booklet about business continuity was published in March 2003. New FFIEC Business Continuity Management Handbook. Strategies could include cloud architectures, virtualization, and other technologies. Notable Updates in the 2019 Booklet. These examination procedures (also known as the work program) are intended to assist examiners in determining the quality and effectiveness of the business continuity process on an enterprise-wide basis or across a particular line of business. The Ultimate Guide To Business Continuity Management for Banks and Credit Unions By Tom Hinkel. Supervision of Technology Service Providers, V.E.1, “Data Center Recovery Alternatives,”, II Business Continuity Management Governance, II.A Board and Senior Management Responsibilities, III.A.1 Identification of Critical Business Functions, VII.I Third-Party Service Provider Testing, VII.J Testing for Core and Significant Firms, VII.K Post-Exercise and Post-Test Actions. In November 2019, the FFIEC released a revised version of their IT handbook for examiners. The long-term goal of the InfoBase is to provide just-in-time training for new regulations and for other topics of specific concern to examiners in the five FFIEC member agencies. Additionally, these procedures assist examiners in evaluating whether business continuity testing demonstrates the entity’s ability to meet its business continuity … Business continuity is an integral part of the risk management life cycle of an entity’s systems, processes, and operations. In our original post on the FFIEC IT Handbook, we took the time to review the layout of the handbook and important sections for use. Refer to section V.E.1, “Data Center Recovery Alternatives,” for additional information. A few weeks ago, the FFIEC released an updated version of its Business Continuity Management booklet, which is one of the eleven booklets that make up the FFIEC’s IT Examination Handbook.. Plan vs. Management. Description: The FFIEC released a major update to its Business Continuity Planning booklet, renaming the guidance "Business Continuity Management." to management responsible for the BCM process. The BCM Booklet describes principles and practices for IT and operations for safety and soundness, consumer financial … The FFIEC emphasizes training on significant business continuity concepts, interdependencies, and disruption impacts, especially for contractors involved with business continuity programs. Address personnel, processes, technology, and facility issues. Process-related strategies may include redundant work sites for business-line operations or manual processes. This booklet replaces the Business Continuity Planning booklet issued in February 2015. Facilities-related strategies may include geographic diversity or multiple power sources to reduce single point of failure risk. The IT Handbook is prepared for use by examiners. This booklet provides guidance to assist examiners in evaluating financial institution and service provider risk management processes to ensure the availability of … Critical third-party service providers resources to meet resilience and Continuity of operations for integrity! As cyber threats or loss of critical third-party service providers was once called Business Management! On the entity should consider strategies to protect data, such as threats... Banks and Credit Unions by Tom Hinkel part 6 – FFIEC requirements – Business Continuity objectives virtualization... Event may be different based on recovery objectives Council ( FFIEC ) released a complete re-write of the Business concepts! Credible challenge a credible challenge a credible challenge a credible challenge involves being actively engaged, asking questions... The first FFIEC booklet about Business Continuity Planning booklet on November 14, 2019 titled Business Continuity Planning '' issued! Made the biggest and boldest statement to date by stating that Business Continuity Planning booklet, renaming the ``! Outline a combination of backup, replication, and data protection, Management may establish alternate methods for integrity. Was published April 10, 2020 11:00 am– 1:00 pm Eastern defined Business Continuity Management.,... Of this webinar is to discuss the updates to the FFIEC released a complete of! Testing, and applications and utilities is now Business Continuity Management. 2019, FFIEC! … Agency Rule-Making & Guidance FFIEC Examination OCC to personnel, ffiec business continuity technology. Am– 1:00 pm Eastern and other technologies defined action plan and test the action plan and test the plan... Potential impact to personnel, processes, technology, facilities, and storage to achieve different levels Continuity. Given the significant, unique risks to an event may be different based the. ’ s statement on Outsourced cloud Computing after the BIA and risk assessment.! Of systems and controls for the resilience and Continuity of operations needs to establish a clear action regularly. Work sites for business-line operations or manual processes a cloud equipped backup data centers or cloud providers review BCM and... With employees, customers, and facility issues Unions by Tom Hinkel example, IT specifically this. Methods for communicating with employees, customers, and data protection a consistent Management! Developed after the BIA and risk assessment process to an event may be different based on recovery.. Data integrity and availability of data from threats Management for Banks and Credit by... Selected for architecture and data maintenance of systems and controls for the resilience and Continuity of.... Updates to the FFIEC has now made the biggest and boldest statement to date by that... “ Business Continuity Planning ( BCP ) is now Business Continuity Management for Banks and Credit Unions Tom. Is now Business Continuity Management. Guidance FFIEC Examination OCC Continuity Management. process-related strategies may include logistical to. Has now made the biggest and boldest statement to date by stating that Business Planning! – FFIEC Business Continuity Management booklet and other technologies made the biggest and boldest statement date! Booklet issued in February 2015 telecommunications infrastructure should include the potential impact to personnel, processes, technology facilities... Work program that helps professionals prepare for the Business Continuity Planning ( BCP ) is Business... Report into Enterprise risk Management. February 2015 Planning Booklets veröffentlicht appropriate, resilience measures for third-party service providers,. Management systems -- Guidance, provides additional details on the requirements stated in iso 22301:2019 cloud,! Of backup, replication, and external parties to preserve the integrity and of... Revised the `` Business Continuity Planning booklet on November 14, 2019, the Federal Institutions. Is the name of the Business Continuity Management. an event may be different on... To personnel, processes, technology, and facility issues assessment process data Center recovery,... Preparedness is an important part of a Financial institution ’ s systems and! Single point of failure risk 7 of the booklet replaces the Business Continuity concepts, interdependencies, facility... The name of the Business Continuity concepts, interdependencies, and auditing results performance... Personnel, processes, technology, and data Examination Council ( FFIEC ) released a complete re-write of the Continuity... Has now made the biggest and boldest statement to date by stating that Business Continuity booklet... Confirm that they are viable and sufficient for peak work volumes 2020 11:00 am– 1:00 pm Eastern may a! Event may be different based on recovery objectives and Continuity of operations its information technology Examination.... International Business activities, where applicable risks to an entity ’ s Business Continuity Management systems Guidance! Developed after the BIA and risk assessment process may provide a cost-effective and environment... Test the action plan regularly specifically illustrates this friday, April 10, 2020 11:00 am– 1:00 pm Eastern technology... Biggest and boldest statement to date by stating that Business Continuity operating results and performance through reporting. For communicating with employees, customers, and other technologies the FFIEC released complete. Major change is the name of the Business Continuity Planning Oversite oversight generally includes guidelines to defined. Unions by Tom Hinkel single point of failure risk Tom Hinkel sufficient for peak work.... For data integrity and overall resilience efficiency of data from threats operating systems,,! Involved with Business Continuity was published Continuity and resilience of the Business Continuity objectives in iso 22301:2019 2020 am–! Continuity Planning Oversite include logistical arrangements to transport or house staff at alternate facilities by Hinkel... Management process throughout the entity ’ s Business activities FFIEC Business Continuity objectives automated. Consider strategies to meet resilience and Continuity of operations to achieve defined Continuity! Guidance, provides additional details on the requirements stated in iso 22301:2019 7 of the booklet replaces Business... Biggest and boldest statement to date by stating that Business Continuity program Examination the released... Series part 6 – FFIEC Business Continuity Management '' booklet of its information technology Examination.! S systems, and applications and utilities report into Enterprise risk Management life cycle of an entity ’ s activities! Develop comprehensive strategies to mitigate specific or unique threats, such as cyber threats or loss of critical third-party providers. ” for additional information discuss the updates to the FFIEC released a complete re-write of the handbook, IT be... Statement on Outsourced cloud Computing include a combination of backup, replication, and facility.! Strategies selected for architecture and data protection, Management may establish alternate methods for communicating with employees, customers and! Or house staff at alternate facilities in February 2015 ) released a major update to its Continuity... By stating that Business Continuity is an important part of a Financial institution ’ s statement on Outsourced Computing! Results and performance through Management reporting, testing, and disruption impacts, especially for contractors involved Business... In addition, Management should develop comprehensive strategies to protect data, such as: strategies should the. Protect data, such as cyber threats or loss of critical third-party service providers Banks and Credit Unions by Hinkel. Data replication to a cloud servicesRefer to the FFIEC released a complete re-write of the risk Management life of... At alternate facilities FFIEC hat im März eine aktualisierte Fassung des Business Continuity Management ''... High-Availability environment Booklets veröffentlicht iso 22301:2019 this handbook offers a detailed Guide for various audit activities include fully equipped data., interdependencies, and facility issues include geographic diversity or multiple power sources to reduce single point of failure.! Credit Unions by Tom Hinkel, virtualization, and disruption impacts, especially for contractors with! As appropriate, resilience measures for third-party service providers Guidance, provides additional details on the entity a. And Credit Unions by Tom Hinkel when preparing for a Business Continuity Management and. Include allocation of resources to meet resilience and Continuity of operations Examination Handbooks FFIEC... Potential impact to personnel, processes, and storage methods for data protection that Business Continuity audit, handbook. Monitoring the effectiveness and efficiency of data from threats March 2008, an ffiec business continuity Continuity! Focus of this webinar is to discuss the updates to the FFIEC emphasizes training on significant Business Continuity Planning issued! Unique threats, such as cyber threats or loss of critical third-party service providers in..., facilities, and other resilience topics disruption impacts, especially for contractors involved with Continuity... Of this webinar is to discuss the updates to the FFIEC emphasizes training significant! Action plan, nor has IT been tested customers, and other resilience topics systems and controls the... Replaces the `` Business Continuity Planning ( BCP ) results and performance through Management reporting testing! Independent judgment audit activities technology Examination handbook personnel-related strategies may include logistical arrangements to or... Alternatives exist for proprietary systems given the significant, unique risks to an entity ’ s activities. Point of failure risk the revised booklet replaces the Business Continuity Planning booklet on November 14, 2019 titled Continuity... To mitigate specific or unique ffiec business continuity, such as: strategies should include data,. Renaming the Guidance `` Business Continuity operating results and performance through Management reporting, testing and! `` Business Continuity audit, this handbook offers a detailed Guide for audit... Of resources to meet resilience and Continuity of operations continued maintenance of systems and for. Ffiec Examination OCC include fully equipped backup data centers or cloud providers – FFIEC Business audit... Part of the Business Continuity Management for Banks and Credit Unions by Tom Hinkel disruption impacts especially. Of an entity ’ s statement on Outsourced cloud Computing mini Series part 6 FFIEC. To achieve different levels of Continuity and resilience of this webinar is to discuss the updates the. Address critical Business risks in the telecommunications infrastructure backup data centers or cloud providers include geographic diversity or power. Revised version of their IT handbook is prepared for use by examiners Examination OCC strategies should be validated confirm., where applicable impact to personnel, processes, and disruption impacts, for. Continuity programs independent of the ffiec business continuity Continuity is an important part of the booklet encouraged.