CTPAT Breakdown: 2.4

Item 2.4

CTPAT Members should have written procedures in place that address crisis management, business continuity, security recovery plans, and business resumption.

Implementation Guidelines

A crisis may include the disruption of the movement of trade data due to a cyber attack, a fire, or a carrier driver being hijacked by armed individuals. Based on risk and where the Member operates or sources from, contingency plans may include additional security notifications or support; and how to recover what was destroyed or stolen to return to normal operating conditions.

This is a SHOULD requirement for CTPAT.

This is a management item requiring policies and procedures that may affect IT staff.

Disaster recovery procedures are a good thing to have.

Bookmark the permalink.

Comments are closed.