Reply 1 & 2

The similarities between BCP and DR plans are, they both address the steps need to be taken when an unfortunate event occurs. Both the plans need to be full proof and tested. It is mandatory for the audit team to review those plans and update it on regular basis. These both the plans are independent of each other. The difference is business continuity plan is more of regarding the business. It contains the backup procedures, tools, and the data that need to continue the business without going into downtime. In the BCP plan, the downtime will be very less. The disaster recovery plan involves restoration of organization infrastructure, recovery the data that has been lost. In this plan, the main focus will be on recovering the organization from the damage that was caused by the disaster. Unlike in business continuity plan, the recovery time can be more in the disaster recovery plan (Timothy King, 2018).

At the time of crisis, it is needed the business needs to be done or shift the business operations to another place so that the maintenance of the business will be done. These things need to be included in the recovery plan. While making the plan itself, the team needs to think of a site where they can work at the time of disasters. They should think of some safe place where the employees can work and deliver the products. It is organization responsibility to take care of their employees at this crucial time.

The human resource department in the organization needs to take care of these documents. It is their responsibility how they are going to share the plans across the organization. They can document or store it in the cloud. They can conduct some sessions regarding these plans and train their employees regarding this. They can share the link to these documents within the organization. By doing this even the new joiner can have an idea about these plans.

Policies are important in every organization. The policy will tell the employees what terms they need to follow. Having policy will maintain the fairness and transparency of the organization. If the organization is having policy means they are complying with the law. So while making the policy the organization needs to consider all the factors. By reading the policy, one should understand the terms and objectives of the organization. While making policy, the organization needs to consider everyone in the organization. It is not for few members and it is about the whole organization. Having a well-written policy will save the organization form non-compliance issues also. At the same time, the poorly written policy will harm the organization. So while making policy has an efficient team who can make and review it (Edmund R. Gray, n.d).

While joining the organization itself, the employee will sign the non-disclosure agreement. Not complying with this will leads to punishment. In any case, the information regarding the organization needs to be confidential. Every single document related to the organization is confidential. If it is no longer useful try to shred it or destroy it. It is employees’ responsibility to keep the information confidential. Both BCP and DR plans are important to the organization. We cannot say which one is important between them. Both have their own importance. If by any chance any document got by our competitor, it is a loss to the Organization. Just think if he is able to get his hands on the organization internal plans, he may access other information also. Between these two plans as business continuity will contain more regarding the critical business operations and the strategy it used to maintain their operations. So losing BCP will have the significant threat to the organization.

If any disaster occurs, the law enforcement team is the first one to react. They play a vital role in recovering the people from disaster effects. The courage and the surviving skills they show in those difficult situations is appreciable. The team will work 24x7 to rescue the citizens. They will shift the citizens to a safe place. The paramedics, police officials, firefighters all are needed to control this emergency situation. They are much trained to cope up these situations and bear the stress.  If they are not there, the situation would have been more difficult to carry on. So we all should be really grateful for the whole team (Bob Galvin, 2013).

While testing our disaster recovery plan, if we invite some of the members of the law enforcement team to the organization will be good. The team in the organization would have imagined about the disaster and have made a strategy to survive from it. The law enforcement team is already survived from those types of disasters.  They will give their inputs also and train our employees regarding the surviving skills at the time of disasters. Instead of theory showing it in practice will benefice the employees also. By doing these organization has taken really good efforts for making BCP and DR plans. It shows their dedication towards their employees and organization. 

If the disaster occurs, the communication media will already give reporting regarding this. But they will not have full information which business operations got impacted in the organization because of this disaster. It's better if the organization itself has taken this initiative and provide info which services are going to be downtime and how long it will take to restore it. The customers will understand and they will wait for their deliveries. If the organization didn't make any announcement regarding this, the clients may think everything is fine and they except their deliveries on time which cannot be possible. So in my opinion informing about the disaster impact in the organization will not let the organization down. It will update the customers what can be expected in this type of situation. It will maintain the trust of the clients and goodwill of organization. 

References: