| Publications and Whitepapers | |
|
Page 11 of 19
Why Do RunBooks Focus On Service?
A RunBook is Service Oriented vs. single system oriented. When documentation does not meet the requirements mentioned above, it is probable that listing the device in an inventory system is sufficient and further documentation is not required. Where the availability of a critical or core business function depends upon the accurate working of interdependent systems, it is advisable to have a business owner who assures the current and complete Service RunBook. As is true for any controlled system, the RunBook explains day to day system procedures, but additionally adds some or all of the following elements:
Should I Write A RunBook?Consider whether the following statements are true. Figure 7. Should I write a RunBook? Where Do I Get The Information That Goes Into The RunBook? Consider the following sources. RunBooks bring visibility to an aggregation of documents and details that collectively support service availability or product delivery. When Is A RunBook Complete?Consider whether the following statements are true. RunBooks can be maintained as a word report that is output from a single database system or from a collection of systems. The form used to gather RunBook elements (today) is in Facilitated Compliance Management. This is a location that is subject to change. The tool that gathers RunBook details is not critical to the process. The tool for gathering elements can also be a word document, as identified in the template section. The process for generating RunBook information is not important, so long as visibility of how systems run is maintained for the business owner and technology support personnel. Example Interface for gathering RunBook elements by Service Title Where Do I Find The Template?\\...\pal\Facilitated Compliance Management\... \\...\pal\Templates\RunBook Template.dot The current procedure for RunBook is to use our system database and generate a RunBook report as needed. RunBook Document ElementsThe following section is written to address addition questions pertaining to document elements, storing and managing information and how steps and controls are specifically captured to support the internal audit of IT program and application level controls. Sections include: Where Does My Document Belong?\\...\PAL\IT Process Asset Library\
\\...\PAL\IT Work Product Library\
|
|
| Last Updated on Thursday, 03 May 2012 17:29 |
|
Procedure Guidelines and Controls Documentation - Why Do RunBooks Focus On Service?
Friday, 30 September 2011 15:09
|
|
The GRC Buzz
Now Available - Cloud & Virtualization Essentials™
Holistic Information Security Practitioner Institute (HISPI) welcomes EnterpriseGRC Solutions as member of their HISP Certification Board/Committee Read More
GRC Solutions
ITpreneurs is proud to name EnterpriseGRC Solutions as its newest certified partner. ITpreneurs and EnterpriseGRC Solutions will collaborate to increase Cloud and Virtualization concepts and controls, ISO 27001, COBIT and ITIL courses offered through EnterpriseGRC Solutions. “Every member of my organization has achieved at least one certification through ITpreneurs, and this is the second company that I’ve founded with that same promise. [...] It is a proud day, that we can be a part of ITpreneurs’ landmark efforts to bring forward CompTIA Cloud Essentials training and certification. - Robin Basham, Managing Partner.
Spontaneous Kudos - We've really been digging our digest from The Compliance Exchange
Have you read Value of a Conversation?
Partners and Client Information
Ryma Technology Solutions names EnterpriseGRC Solutions as an Affiliate Partner. More. Recent Wins: EnterpriseGRC Provides IS0 27001 Policy and SOA readiness for NetSuite Inc. EnterpriseGRC Solutions Sponsor to ISACA ITGI. Recent Partner Alignments include ITpreneurs, Control Solutions International
Request For Information? Please fill out our Wufoo form.
