Service Continuity Management

" Disclaimer: AlBabtain Group management considers the information contained in this document to be of confidential by nature and is a proprietary to AlBabtain Group. The distribution of this document should be controlled and be made available only to persons authorized by the CIO. No content of this document shall be copied, deconstructed or reproduced, except with a prior written approval from the Group IT management."

IT Service Continuity Management (ITSM) aims to manage risks that could seriously impact IT services. ITSCM ensures that IT can always provide minimum agreed service levels, by reducing the risk from disaster events to an acceptable level and planning for the recovery of IT services. ITSM is designed to support AlBabtain Group’s Business Continuity Management.
The goal of the Service Continuity Management is a systematic process to prevent, predict and manage Information Technology disruption and incidents which have the potential to disrupt IT services and should result in a more resilient IT service capability aligned to the business requirements.
The scope of Service Continuity Management is planning and preparing for any anticipated major disasters. To identify and eliminate or contain risks. Restore from major failures of technology and using methods to return to normal operations.
Implementing and operating controls and measures for managing AlBabtain Group’s overall continuity risks.
Monitoring and reviewing the performance and effectiveness of the business continuity management system.
Continual improvement based on objective measurements.

Business Continuity Management will ensure that IT services will be provided to minimize the business impact of an extended system outage, by minimizing risks and ensuring adequate resources to provide system availability and data integrity.

Business Impact analysis: Identifies the likely and potential impacts from events on the organization or its processes and the criteria that will be used to quantify and qualify such impacts.
Risk evaluation and Control: Identifies the risks/threats and vulnerabilities that are both inherent and acquired which can adversely affect the organization and its resources, or impact the entity’s image.
Emergency Response and Operations: Develops and implements the organization’s plan for response to emergency situations that may impact safety of the employees, visitors and other assets.
Awareness and Training Programs: Programs are developed, implemented to establish and maintain corporate awareness about Business Continuity Management (BCM) and to train the staff so that they are prepared to respond during an event.

BCM identifies potential threats to the organization and impacts to business operations.
BCM tests and plans and documents each identified threats and impact scenarios.
After the analysis phase, BCM will reflect the requirements to recover the business from the damage by using all resources and capabilities within or outside the organization.

P.S. The mentioned “RACI chart “procedures are built on standard practice and can be changed upon business and technology environment. And/or IT new frameworks, new roles & responsibilities across IT resources and business owners demand.

This document is intended for the internal use of AlBabtain Group and its subsidiaries only. Unauthorized usage or possession of this document in any form is strictly prohibited. The recipient should ensure that this document is not de-constructed, reproduced or circulated without prior approval from the document owner.

R	The person(s) who is/are RESPONSIBLE for the process
A	The person(s) who is/are ACCOUNTABLE about the process
C	The person(s) who is/are CONSULTED in the process
I	The person(s) who is/are INFORMED about the process

Roles	Job Title/ Role Name
Role “1”	Application Analyst / Technical Analyst / IT Operators
Role ”2”	BCM Manager/ Business/Process Owner

Procedure	Role “1”	Role “2”
Service Continuity Management
Develop and implement a business continuity service	R	A/R
BCM – Exercise, test and review	A/R	I/C/A
Maintain a Continuity Strategy	R	A/R

Company	AlBabtain Group	Version	1.0
Department	Group IT Department	Status	Final
Description	Service Continuity Management Policies & Procedures	Updated	10052017
Document Ref.	GITD_ITP_P009