Board Responsibility in Business Continuity/ Disaster Recovery Planning
What, in your opinion, is your board’s responsibility in business continuity, crisis management and disaster recovery planning?
The board should take primary responsibility, directing management
Do you market your company’s business continuity/disaster recovery plans as a benet to your company’s customers?
Management should take primary responsibility, advising the board
(Other answers included: “It will depend on the nature of the disaster.” “Management should take primary responsibility with the board having the responsibility to ensure that this is done.” “It should be a collaborative ef ort.”)
Does your board have a dedicated business continuity or risk assessment committee or a board member tasked with this issue?
Who’s responsible for informing the board of risk issues at your company?
(Multiple responses allowed.)
Designated board member
Chief Risk Ocer
Chief Legal Counsel
Business unit leaders
(Other answers included: “Probably the CFO and CLC.” “President & COO.” “Employees.” “CIO.” “Board at large.)
(Other answers included: Audit committee periodically reviews the plan.” “For no , risk assessment has only been assessed by IT manager with outside consultants as backup.”)
How important is business continuity planning to your board?
Boardroom Brieng: Business Continuity and Disaster Recovery
As needed Every meeting At least once per year Less often than once per year It’s never been on the agenda
1.6% 0.7% 36% 0.9% 14.4%
How often is business continuity planning/disaster recovery on the agenda for your board meetings?
(Other answers included: “Never was included.” “ Formall , twice a year.” “In connection with strategic plan reviews.”)
If you serve on multiple boards, do you see major dierences among the companies you direct in terms of business continuity planning/disaster recovery?
Don’t serve on multiple boards