Criminal Justice

CJ 493

Module Number 3

April 3, 2013

1. What is business continuity management?

According to Maggio (2008), there are five steps when creating a successful business continuity management plan. They are business impact, risk assessment, risk management, risk monitoring, and contingency management and planning (data protection).

The business impact analysis (BIA) is the first step for a solid BCM plan. This approach ensures and details the areas of concerns and that all threats are covered in detail. The security personnel should identify the potential impact on the uncontrollability, nonspecific events of the business and its customers. Taking into consideration all the departments and their functions, not just the processing of data, and focusing on the recovery priorities in identifying personnel, technologies, facilities, system communications, vital records, and their data.

Risk assessment measures the business risk entity, the potential loss and the possibilities of the loss occurring. Accessing sensitive areas like underground parking. Risk management identifies the potential risk during the assessment and what to do to fix the problem. If a problem is discovered, it is up to the team to discuss the pros and cons to get the issue resolved. Risk monitoring involves the normal business practices and the time and funds they are willing to protect the company and monitor the detailed risks. Contingency management, planning and data protection is protecting the business and protecting their informational data and how to fix the issue should there be damage.

2. Explain all the steps involved in business continuity management. How do they work?

Any business can close for any of several reasons like fire, flood, earthquake, terrorism, disease, and cyber-attack. Every business should have a continuity plan. There are normally five steps for the continuity plan. Analysis, solution design, implementation, testing and organization acceptance, and maintenance.

It is best to have the analysis the risk that could jeopardize the business. The pros and cons should be mapped out to determine the effects it would have should a disaster strikes. Everything should be considered including inventory, employees, customers, suppliers, and the company financial records. The process of answering the "what if questions" is called the solution design. The company should purchase insurance to offset anything that might be at risk. The implementation part is making sure that insurance can cover things in an emergency situation and have an action plan for what the insurance does not cover.

Placing the plan through a risk-management is the testing phase and should be put to the committee to organize role playing in case of the actual disaster-management. Anything that is implemented should be addressed with the employees and the management so that they are comfortable with the plans that are in place. The plans put in place should be maintained annually to make sure that it is sufficient, should disaster happens. Revisions should be made if necessary and the employees should have continued training each year as the updates are made.

3. Describe the field of private investigators (define and explain who they are and what they do).

Private investigation performs surveillance and research for a corporation. Law enforcement and individual clients, they perform interviews and observation is also given to determine of why the client needs help. Private investigators go into the world and discover information for their client. Private