Business Impact Analysis

Regulations such as SOX, GLBA, HIPAA, and FISMA require organizations to analyze business impact and risk. Performing a Business Impact Analysis (BIA) is an important first step in an IT security program, and the output of a BIA should drive business continuity planning and spending on technical security controls. Most organizations have a finite amount of money and resources to apply to risk mitigation, and a solid and comprehensive Business Impact Analysis will guide them in expending resources wisely.

The ControlPath software includes Impact Management functionality that makes the process of performing a business impact analysis simple and straightforward.

Given the number of potential impacts to an enterprise environment, and the often complex interrelationships between business assets, manually measuring and tracking all potential sources of impact is a significant challenge. ControlPath's Impact Management functionality allows an organization to identify and measure impact across its business.

The ControlPath solution provides a repository to store the critical business processes of an enterprise. These business processes can be analyzed against a customized set of quantitative and qualitative impacts. The results of this analysis provide the priority order for restoration for each business process in the enterprise. The ControlPath solution provides real-time reporting on impacts across the enterprise, with the ability to roll-up risk across the organization.