ICT Contingency Planning: A Case For Insurance Companies In Kenya

Abstract

IT systems are vulnerable to a variety of disruptions from a variety of sources which are both internal and external. While many vulnerabilities may be minimized or eliminated through technical and non-technical means as part of the organization's risk management effort, it is virtually impossible to completely eliminate all risks. In many cases, critical resources may reside outside the organization's control (such as electric power or telecommunications), and the organization may be unable to ensure their availability. Thus effective contingency planning, execution and testing are essential to mitigate the risk of system and service unavailability. ICT Contingency planning therefore refers to interim measures to recover IT services following emergency or system disruption