Last Updated on December 23, 2021 by Admin
During a disaster recovery audit, an IS auditor finds that a business impact analysis (BIA) has not been performed. The auditor should FIRST:
- perform a business impact analysis (BIA).
- issue an intermediate report to management.
- evaluate the impact on current disaster recovery capability.
- сonduct additional compliance testing.