The Next Great Outage – What It Really Takes to Apply General Computing Controls to Cloud & Virtualized Environments

Burning hard drive

BCP is a process to ensure continuity of time sensitive, high-impact processes, focusing on operations that would have an immediate impact on profitability due to an interruption.

Today, more than ever, it is critical that your company develop and execute a Business Continuity Plan (BCP).  Auditors, customers, and shareholders expect nothing shy of a comprehensive Business Impact Analysis covering critical business services as determined by a meaningful Risk Assessment identifying wide-ranging threats.  Your BCP approach has to be Total Cost of Ownership and Return On Investment (TCO/ROI)  focused, leveraging recent technology enabled mitigation & recovery strategies, automating test procedures and capturing sign off from executive team and board.

Two camps debate over the safety of Cloud Computing, but chances are neither camp was sufficiently consulted before their companies invested substantially in either virtualization infrastructure or moved any number of key business functions into the Cloud.  The reality is both auditors and the business have to collaborate in refining existing risk scenarios, address new areas of configuration management, and modify change policies to prevent common pitfalls known to the adoption of any new technology, (i.e., loss of availability, integrity, and reputation).  While Cloud and Virtualization pose unprecedented essential business value, (such as avoiding downtime, improving availability, reducing cost of operations and speeding product to markets)  companies that rush to leverage cost savings, are also likely to experience our next biggest losses of all time.

Controlling Risk in Virtualized Environments session discusses practical education and Information Technology approaches providing strategies for effective risk management in Virtualization and Cloud adoption.  The topic will cover key cloud concepts & terminology, cloud, and virtualization project components, and their implications in Information Technology Service Management (ITSM) as well as security and legal aspects in governance.


  • Comprehensive Business Continuity Planning and Project Management as delivered by Master BCP professional standards
  • Understanding of existing Business Continuity and Disaster Recovery (BCP/DR) plans as they compares to existing regulatory requirements
  • Adequacy of backup and recovery provisions to ensure the resumption of normal information processing in the event of a short-term disruption and the need to rerun or restart a process
  • Ability to continue to provide information system processing capabilities in the event that the primary information processing facilities are not available for a significant period of time
  • Organizational capacity to ensure business continuity in the event of a business disruption
  • Practical and timely Business Impact Assessment (BIA) identifying all critical business processes within the company
  • Functional recovery procedures categorized and tested according to their critical business processes
  • Implementation of program enabling technologies and systems, such as Catalyst, Archer, Strohl, automated proprietary workflow using SharePoint or any other company developed or purchased platforms and applications