Auditing of Business Continuity - is important

Often, Organizations create Business Continuity Plans, purely for compliance to Regulators' requirements. The perspective is to get the 'tick' in the box for BCP availability. It is a very risky way of doing business. Plans have to be periodically tested and continually improved. The review period should be clearly defined in the Business Continuity Management policy. On top of that , periodic internal audit should be conducted to ensure what is said in the Policy has been adhered to. If these activities are not performed, the Business Continuity Plan document will be just an 'ornament' in the company bookcase!

One small disruption could wipe out the business, as no one will know to recover in time.

Therefore, develop a Business Continuity Management System, even in a small way.