Crisis Management

 Definition(s):

The overall coordination of an organization’s response to a crisis, in an effective, timely manner, with the goal of avoiding or minimizing damage to the organization’s profitability, reputation, and ability to operate.

 Source: BCI/DRJ

The manner, methodology and coordination of efforts used by a business or organization to prepare, manage and respond to a crisis, emergency, disruption, or disaster in a timely and efficient manner. 

 Source: Erwood Group

Vital Records

 Definition(s):

Records essential to the continued functioning or reconstitution of an organization during and after an emergency and also those records essential to protecting the legal and financial rights of that organization and of the individuals directly affected by its activities.

 Source: BCI/DRJ

Service Level Agreement (SLA)

 Definition(s):

Represents a commitment between a service provider and one or more customers and addresses specific aspects of the service, such as responsibilities, details on the type of service, expected performance level (e.g., reliability, acceptable quality, and response times), and requirements for reporting, resolution, and termination.

 Source: NIST NIST SP 800-47 Rev. 1 under service-level agreement

A formal agreement between a service provider (whether internal or external) and their client (whether internal or external), which covers the nature, quality, availability, scope and response of the service provider. The SLA should cover day- to-day situations and disaster situations, as the need for the service may vary in a disaster.

 Source: BCI/DRJ

Hot Site

 Definition(s):

A fully operational offsite data processing facility equipped with hardware and software, to be used in the event of an information system disruption.

 Source: NIST CNSSI 4009-2015 from NIST SP 800-34 Rev. 1
NIST SP 800-34 Rev. 1 under Hot Site

An alternate facility that already has in place the computer, telecommunications, and environmental infrastructure required to recover critical business functions or information systems.

 Source: BCI/DRJ

Warm Site

 Definition(s):

An environmentally conditioned work space that is partially equipped with information systems and telecommunications equipment to support relocated operations in the event of a significant disruption.

 Source: NIST CNSSI 4009-2015 from NIST SP 800-34 Rev. 1
NIST SP 800-34 Rev. 1 under Warm Site

An alternate processing site which is equipped with some hardware, and communications interfaces, electrical and environmental conditioning which is only capable of providing backup after additional provisioning, software or customization is performed.

 Source: BCI/DRJ

Cold Site

 Definition(s):

A backup facility that has the necessary electrical and physical components of a computer facility, but does not have the computer equipment in place. The site is ready to receive the necessary replacement computer equipment in the event that the user has to move from their main computing location to an alternate site.

 Source: NIST CNSSI 4009-2015 from NIST SP 800-34 Rev. 1
NIST SP 800-34 Rev. 1 under Cold Site

An alternate facility that already has in place the environmental infrastructure required to recover critical business functions or information systems, but does not have any pre-installed computer hardware, telecommunications equipment, communication lines, etc. These must be provisioned at time of disaster.

 Source: BCI/DRJ

Call Tree

 Definition(s):

A document that graphically depicts the calling responsibilities and the calling order used to contact management, employees, customers, vendors and other key contacts in the event of an emergency, disaster or severe outage situation.

 Source: BCI/DRJ

Assembly Area

 Definition(s):

The designated area at which employees, visitors, and contractors assemble if evacuated from their building/site.

 Source: BCI/DRJ

Business Unit Coordinator

 Definition(s):

A staff member appointed by a business unit to serve as the liaison person responsible for all BCM direction and activities within the unit.

 Source: BCI/DRJ

Business Unit

 Definition(s):

A business unit within an organization e.g. branch/ division.

 Source: BCI/DRJ