Risk assessment – Business impact analysis

ebrc Business Impact Analysis evaluate :

• the costs and consequences of a disruption
• the minimum service level required
• the Recovery Time Objective (RTO)
• the rates of acceptable data loss (RPO: recovery point objective) for the resources associated to the critical activities

ebrc Risk Assessment helps to :

• determine the importance and the cost of a threat
• measure its probabilities and consequences
• evaluate the necessity to plan the recovery of operations if the threat occurs

ebrc consultants may also update the process covered by an existing a Disaster Recovery / Business Continuity Plan (DRP, BCP)

A Business Impact Analysis completed by a Risk Assessment will help businesses and IT departements:

• Identify and prioritise critical systems and applications
• Minimise the risks of data loss
• Evaluate recovery priorities
• Limit the recovery time
• Define a relevant and reasonable budget
• Determine the cost of downtime
• Disaster Recovery / Business Continuity

By applying standards especially BS 25999, DRII and ISO27000 and covering the whole Business Continuity Management (BCM) lifecycle, our experts give you confidence in business-to-business and business-to-customer dealings.

ebrc achieves the ISO 27001 certification, that comprehensively defines the requirements for establishing, implementing and documenting an effective information Security Management System.

ebrc builds relevant Business Continuity Plans in compliance with legal constraints:

• International regulations such as Basel II or MIFID, for the financial institutions
• Recommendations from the Luxembourg public institution “Commission de Surveillance du Secteur Financier” (CSSF) on data confidentiality and integrity 

ebrc consultants have been certified, among others, by:

• the Disaster Recovery Institute (DRII) international standards and British Standard BS 25999
• Prince II Project Management methodology
• ITIL v3