When a disaster happens, your first thoughts will likely revolve around how it will affect your business and the services it provides. Depending on what occurs, you might be required to call your Business Continuity Plan (BCP) into action to ensure your company remains operational and that any Recovery Time Objectives are met.
Unfortunately, too many business owners fail to properly prepare themselves for taking this action, by viewing disasters as two-dimensional events. Realistically, a disaster has many possible outcomes and is not as black and white as you may think. For instance, think about how a flood can disrupt your company.
The logical conclusion for most business owners is to picture their office underwater. While that is one possibility, several others may also exist that could require you to consider implementing your BCP. A flood may not disturb your office, but what if it strikes an off-site storage facility where you keep digital or paper data? This is likely to have just as great an impact on your business, and necessitate your BCP coming into action.
Here we’ll take a look at a few other disasters that can happen, and which factors you need to consider before implementing your BCP.
If a fire takes place at your business, invoking your BCP is a fairly obvious decision. However, what do you do if a fire occurs in the same building as your office, or next door to you? It can be a problematic situation as you may not know what, if any, damage has occurred. Smoke travels fast and can leave behind soot, which may render your servers inoperable or highly unstable. There may be health issues at play as well, and sometimes it is not be feasible to have your employees working in the office in the immediate aftermath of smoke damage.
Before invoking your BCP in this situation, you will want to speak with fire crews on the scene about when they will let you back into your office and what kind of damage has been done. This should give you the necessary information on how to proceed, and enable you to decide whether your BCP needs to be put into action.
It can be hard to gauge what to expect in times of civil unrest. We have witnessed large protests that remained peaceful, but we have also seen ones that have become unruly and destructive. Several business owners had to halt or significantly reduce services in places like Missouri and Baltimore because of the latter. Only time will tell if they are able to recover, or end up having to shut their doors for good.
Due to the volatility of these events, it is impossible to fully prepare yourself, since you can never completely know how the situation will pan out. Instead make sure you and your staff are prepared to invoke your BCP should the situation deteriorate. Even if something were to happen at your premises, if you’re diligent and paying attention you should be able to act quickly and prevent a large-scale service disruption.
Most people don’t put things like viruses and security breaches in the realm of disasters, and that in and of itself can be disastrous. Let’s use one of the fastest growing security threats to small businesses, ransomware, as an example. It could be downloaded to your network by a deceptive email and opened by an employee. When ransomware makes it way onto your network, it will encrypt or block all access to your data until you pay a sum of money.
Because ransomware can appear suddenly, often business owners get flustered and either pay the ransom or suffer a long period of downtime trying to figure out how to fix the problem. Either way, money is lost. If ransomware or any other security breach occurs, it’s important to quickly analyze the situation and determine whether you need to invoke your BCP, which should allow you to avoid both downtime and ransom payments.
It’s important to remember that a disaster can appear in many different ways, shapes and forms. If you need help on determining when it is appropriate to initiate your BCP, or have any other questions about how a BCP would help your business, give us a call.