|
My
comments are in italics <Yada yada yada ...> -----Original
Message----- Sponsored
by International Quality and THE
CHANGING ROLE OF THE INTERNAL AUDITOR March
31- <See
Details at the end of this email> Seats
are limited so sign up now at www.iqpc.com! *************************************** How
do you address a situation where an organisation has only got a Disaster
Recovery Plan for the IT department and there is no document for the whole
group? <Well, for me having a DRP plan only for IT Department is not sufficient
enough unless your company is very IT dependant and paperless company (in this
case good media backup procedure is required). DRP should cover the whole
organization because the company functions as a single unit and not just solely
on IT dept.> How
do you also tackle a situation where there are no structures in place for the
Disaster Recovery Plan? For example there is no disaster recovery team, and
management does not seem aware of the fact that an all-inclusive document for
all aspects of the business is required. <Generally DRP team should be formed and headed normally by the CEO or
the highest authority. Members consist of representative of each department in
the company. This team would formulate and establish all documentation with
regards to DRP> Who
would be responsible for developing and maintaining the disaster recovery plan? <See above comment> What
role would the internal auditor play in the formulation of a disaster recovery
plan? How can the Disaster Recovery Plan for the IT Department be incorporated
into the Disaster Recovery Plan for the whole organisation. <The internal auditor role generally to ensure that the company test the
DRP on regular basis (preferably once a year) and verify the test results. The
auditor should also ensure that the documentation regarding the DRP are kept current. �Members
list and procedures are updated as and where there are changes in the company.> Many
thanks in advance! <No problem. Hope it helps! > Bruce
T. Mubayiwa Group
Internal Auditor Rapid
Financial Holdings Bus:
+263 4 797579 Fax:
+263 4 705993 -----Original
Message----- From:
Jim Kaplan [mailto:[EMAIL PROTECTED]] Sent:
Wednesday, February 05, 2003 12:06 PM To:
Bruce Mubayiwa; Audit-List (E-mail) Subject:
Re: Auditing a Disaster Recovery Plan (DRP) Bruce, Have
you looked at the Audit Programs Section of AuditNet at www.auditnet.org/asapind.htm? Look
under business continuity for disaster recovery audit programs. If
you go the AuditNet Library page at http://www.auditnet.org/auditnet_virtual_library.htm
and look under Disaster
Recovery Auditing you will find more resources and articles. Jim At
09:37 AM 2/5/2003 +0200, Bruce Mubayiwa wrote: >Sponsored
by International Quality and Productivity Center Conference on > >THE
CHANGING ROLE OF THE INTERNAL AUDITOR >March
31-April 2, 2003 * Georgian Terrace Hotel * Atlanta, GA > ><See
Details at the end of this email> > >Seats
are limited so sign up now at www.iqpc.com! >*************************************** > >I
would like to audit the company's Disaster Recovery Plan and need >pointers
on where and how to start. Many thanks in advance. > >Bruce
T. Mubayiwa >Group
Internal Auditor >Rapid
Financial Holdings > >Bus:
+263 4 797579 >Fax:
+263 4 705993 > > >This
conference provides expert speakers addressing the latest and most >topical
issues regarding new processes & practices helping internal >auditors
successfully meet the expectations of BODs & auditing committees, >senior
executives, clients and external consultants. Includes case studies >from
Fidelity Investments, Bon Secours Health Systems, Staples, Schwan >Food
Company, FedEx, Anchor Bancorp, and others. > >AUDIT-L
SUBSCRIBERS WILL SAVE $200 using discount code: A434E. > >Register
by calling 1-800-882-8684, email to: [EMAIL PROTECTED] or >online
at www.iqpc.com! Note: This discount cannot be combined >with
any other offer. Payment in full upon registration. For >cancellation
and conference policies, please visit www.iqpc.com. > >If
your organization would like to sponsor this discussion list send an >e-mail
to [EMAIL PROTECTED] for information. > >To
unsubscribe to the Audit-l list send an e-mail to >[EMAIL PROTECTED]
Leave the subject line blank and include the This
conference provides expert speakers addressing the latest and most topical
issues regarding new processes & practices helping internal auditors
successfully meet the expectations of BODs & auditing committees, senior
executives, clients and external consultants. Includes case studies from
Fidelity Investments, Bon Secours Health Systems, Staples, Schwan Food Company,
FedEx, Anchor Bancorp, and others. AUDIT-L
SUBSCRIBERS WILL SAVE $200 using discount code: A434E. Register
by calling 1-800-882-8684, email to: [EMAIL PROTECTED] or online
at www.iqpc.com! Note: This discount cannot be combined with
any other offer. Payment in full upon registration. For cancellation
and conference policies, please visit www.iqpc.com. If
your organization would like to sponsor this discussion list send an e-mail to
[EMAIL PROTECTED] for information. To
unsubscribe to the Audit-l list send an e-mail to [EMAIL PROTECTED]
Leave the subject line blank and include the Disclaimer Note. This email and the associated attachments where applicable are confidential and intended solely for the use of individual to whom it addressed. Any views or opinions presented are solely those of the author and do not necessarily represent those Kuala Lumpur City Corporation Bhd and its related companies (the Company). If you are not the intended recipient, be advised that you have received this email in error and that any use, dissemination, forwarding, printing, or copying of this email and its associated attachment is strictly prohibited. If you have received this email in error kindly return the mail and delete the copy that resides in you mailbox. This mail and any attachments are not guaranteed to be secure or free of any virus or other errors defects as information can be intercepted, corrupted, lost, arrive late or contain viruses and thus no responsibility is accepted by the Company for any loss or damages arising in any way from the receipt or use thereof. |
- More questions: Auditing a Disaster Recovery Plan ... Bruce Mubayiwa
- IA - Ahmad Faizal Yahya
