Business volatility includes unexpected IT demand, merger and acquisition activities, as well as economic or government events. Whereby, government volatility can reflect a political event. Theoretically, adequate Continuity Management ensures the capacity to operate when a disaster or unexpected event occurs. Therefore, an IT auditor should assess whether a process exists to ensure that the monitoring of, and planning for, future capacities are done with adequate dialog and participation within the entity well in advance, and whether plans are reviewed at periodic intervals. Good capacity management ensures that the entity’s quality of service is continued at all times — even after a disaster has occurred.
“View Part I of the An Ounce of Disaster Prevention is Worth a Pound of Disaster Remediation series here“