ID Number: G00169770



Best Practices for Aligning Recovery and Business-as-Usual Access Requirements
25 August 2009
 
Roberta J. Witty  

Recovery access requirements must be included in business-as-usual identity and access management procedures, as well as recovery plans, to prevent impeding the recovery process and undoing your identity and access management infrastructure.




Price: US$495.00

Pages: 14






Browse Topics


Other Options







Contact Gartner





Purchasing this document is fast, easy and secure, but you must be registered with gartner.com so we can track your order. Please select your status from these three choices:
Registration is required to purchase this document.
Or, you can register for gartner.com only.
 You or your organization may already own this document. Register now to find out. Your Gartner Membership Administrator can supply the needed License Key(s).
You will not lose your document during registration.
Sign in here:
Username:

Password:
Forgot your username
or password?







For more information about purchasing this or other documents, contact Gartner at one of the telephone numbers below:
North America:    +1 203-316-3010 7:30 am - 8:00 pm Stamford, CT
Europe:    +44 1784 267770 9:00 am - 5:00 pm London
Asia/Pacific:    +65 6879 2785 9:00 am - 6:00 pm Singapore
Japan:    +81 3 3481 3552 9:00 am - 5:30 pm Tokyo

Table of Contents


    
 Analysis

1.0
    
 Best Practices for Recovery and BAU Access Requirement Alignment

1.1
    
 Best Practice No. 1: IT Service Risk Profiling — Classify Your Business Processes and IT Services
1.2
    
 Best Practice No. 2: Role Life Cycle Management — Develop Recovery Team Roles and Responsibilities
1.3
    
 Best Practice No. 3: Role Life Cycle Management — Build Recovery Access Requirements into Existing Roles
1.4
    
 Best Practice No. 4: Managing Access Policy Violations During a Disaster
1.5
    
 Best Practice No. 5: Recovery Operations — Establish Emergency Recovery Access Request Workflows
1.6
    
 Best Practice No. 6: Recovery Operations — Establish Alternative Authentication Methods
1.7
    
 Best Practice No. 7: Recovery Operations — Provision Essential Nonelectronic Resources
1.8
    
 Best Practice No. 8: Recovery Operations — Disaster Stand-Down: Deprovision Access Changes Made During the Disaster
2.0
    
 Tactical Guidelines

    
 Recommended Reading


List of Tables


Table 1.  
 Manufacturing Firm IT Service Risk Profiling
 

List of Figures


Figure 1. 
 Where IAM and BCM Intersect
 

Figure 2. 
 IT Service Risk Profiling for Business Continuity Management
 

Figure 3. 
 Application Risk Profiling
 

Figure 4. 
 Recovery Team Identification
 

Figure 5. 
 Disaster-Time Activity Types
 

Figure 6. 
 Potential Access Policy Violations Due to Reduced Workforce
 

Figure 7. 
 Summary of Recovery Activities and Recovery Access Requirements
 



Browse Topics:
 
Business Continuity Management
Identity and Access Management
Governance, Risk and Compliance Management




© 2009 Gartner, Inc. and/or its Affiliates. All Rights Reserved. Reproduction and distribution of this publication in any form without prior written permission is forbidden. The information contained herein has been obtained from sources believed to be reliable. Gartner disclaims all warranties as to the accuracy, completeness or adequacy of such information. Although Gartner's research may discuss legal issues related to the information technology business, Gartner does not provide legal advice or services and its research should not be construed or used as such. Gartner shall have no liability for errors, omissions or inadequacies in the information contained herein or for interpretations thereof. The opinions expressed herein are subject to change without notice.




Resource Id: 1148312