business-continuity
Scannednpx machina-cli add skill BagelHole/DevOps-Security-Agent-Skills/business-continuity --openclawFiles (1)
SKILL.md
1.6 KB
Business Continuity Planning
Develop and maintain business continuity capabilities.
BCP Framework
bcp_phases:
1_analysis:
- Business Impact Analysis (BIA)
- Risk assessment
- Critical process identification
2_planning:
- Recovery strategies
- Resource requirements
- Communication plans
3_implementation:
- Procedure documentation
- Training
- Technology setup
4_testing:
- Plan exercises
- Gap identification
- Continuous improvement
Business Impact Analysis
process_classification:
critical:
max_downtime: 4 hours
examples: Payment processing, authentication
essential:
max_downtime: 24 hours
examples: Customer support, reporting
necessary:
max_downtime: 72 hours
examples: Internal tools, analytics
desirable:
max_downtime: 7 days
examples: Development environments
Communication Plan
communication:
internal:
- Executive notification
- Team communication
- Status updates
external:
- Customer notification
- Regulatory reporting
- Media relations
channels:
- Primary: Slack/Teams
- Secondary: Email
- Emergency: Phone tree
Best Practices
- Annual BIA updates
- Regular plan testing
- Clear roles and responsibilities
- Multiple communication channels
- Executive sponsorship
Source
git clone https://github.com/BagelHole/DevOps-Security-Agent-Skills/blob/main/compliance/continuity/business-continuity/SKILL.mdView on GitHub Overview
Develop and maintain business continuity capabilities using a structured BCP framework. This skill covers Business Impact Analysis (BIA), recovery strategies, documentation, training, testing, and communication plans to minimize downtime and protect critical processes.
How This Skill Works
You begin with the BCP framework phases (analysis, planning, implementation, testing). Conduct a Business Impact Analysis to classify processes as critical, essential, necessary, or desirable and assign max_downtime; then define recovery strategies, resource needs, and a communication plan. Finally, document procedures, provide training, set up technology, run plan exercises, and apply continuous improvement.
When to Use It
- Building or updating an organizational resilience program.
- Ensuring critical processes (e.g., payments, authentication) stay within defined max_downtime.
- Planning internal and external communications and regulatory reporting during disruptions.
- Conducting BCP testing or exercises to identify gaps.
- Defining resource requirements and recovery strategies across teams.
Quick Start
- Step 1: Identify critical processes and classify them with BIA, assigning max_downtime.
- Step 2: Develop recovery strategies, resource needs, and a communication plan; document procedures and train teams.
- Step 3: Exercise the plan, identify gaps, and implement continuous improvement.
Best Practices
- Annual BIA updates
- Regular plan testing
- Clear roles and responsibilities
- Multiple communication channels
- Executive sponsorship
Example Use Cases
- Payment processing and authentication downtime recovered within the maximum downtime defined by the BIA.
- Customer support and reporting operations restored within 24 hours per essential process classification.
- Internal tools and analytics outages resolved within 72 hours with documented recovery steps.
- Development environments restored after a 7-day outage using recovery procedures.
- Executive notification, customer communication, and regulatory reporting activated during a security incident.
Frequently Asked Questions
Add this skill to your agents
