IT Gap Analysis
1. Identify potential threats
Teed facilitate discussions with IT and comms representatives who have a good appreciation of infrastructure set up as well as reviewing network diagrams, server lists, risk assessment information and other relevant material to carry out an analysis of potential gaps in capability that could impact recovery. Our consultant will also:
- Undertake a risk assessment of key IT and comms facilities
- Understand existing data management processes and the potential data loss to which the business is exposed
- Obtain information on the known or assumed business expectations for Recovery Time Objectives (RTOs) and Recovery Point Objectives (RPOs)
2. Identify business requirements
Teed facilitate discussions with IT and comms representatives who have a good appreciation of business expectations, although some assumptions may be necessary. Our consultant will also:
- Review existing business continuity plans for the organisation
- If required, facilitate Business Impact Analysis (BIA) discussions with business representatives to ensure that minimum resource requirements are justified and based upon the prioritisation of critical activities and consideration of the feasibility of contingencies and workarounds that would “buy more time” for the recovery of IT and comms services
- Obtain views on planned or potential IT and comms initiatives that would improve upon the current position (e.g. implementation of virtualisation, changes in data management, etc.)
3. Deliver returns
The results of the IT Gap Analysis is delivered as a Recommendations Report that clearly outlines the current level of preparedness and, in matrix form, the “required” versus “achievable” recovery capability against each IT and comms service, thus highlighting the gaps that should be addressed. An appropriate plan of action for addressing the issues and areas of concern identified will be suggested.