Last update 15-05-2024
Introduction
As part of a risk assessment, for me, the most important step is to conduct a business impact assessment (or short a BIA).
This helps to determine the context/importance of the process/application in the organisation.
Traditionally I used a excel sheet do conduct this assessment, but as an avid Excel hater (sorry if I insult anyone by saying this), I created a web based application that would help a security professional to conduct the BIA.
You can find the application on my github.
With this application it is possible to conduct BIAs which will help with the following tasks:
- Retrieve Business Continuity requirements (RPO, RTO, MASL, MTD)
- Identify critical assets, it’s dependencies and interfaces with these assets
- Identify owners of the assets and risk
- Identify how support and suppliers are arranged
- Determine what components make up a service
I did some updating on the application, which now makes it so that you can export a BIA from the application into a CSV format. What I will be working on now is a PowerBI template to be able to build a report for the BIA.
Once I have some news on the PowerBI template, I will post it here