ITIL’s guidance on Risk Management has changed through the years. In ITIL v2, it was based on C.C.T.A.’s Risk Analysis Management Methodology (the acronym is CRAMM, I kid you not). It looked at the combination of Assets, Vulnerabilities, and Threats to derive a Risk score to which Countermeasures were applied.   ITIL v3 2011 defers Risk …
Read more

I’ve posted a few times before about Disaster Recovery (DR) as it relates to IT (ITIL calls this IT Service Continuity Management), but this post is more about Business DR. The business must be the driver for all DR projects. Without the business in in the forefront, it is hopeless to attempt developing an IT DR Plan. Truthfully, …
Read more

How good are your Disaster Recover plans (DR plans)? Of 10 companies that don’t have DR plans, only 1 will be in business for more than 10 years. Is it because the other 9 companies experience a major event for which they are unprepared? No, most likely it is because those 9 other companies have …
Read more