This approach to creating cyclically-based strategies has helped to alleviate the time constraints on companies over time when it comes to managing the process of education and gaining senior management commitment. The smaller incremental gains made in these smaller organizations have actually proven to be more effective at deterring potential threats as knowledge is accumulated over time and change is gradual (Botha, Von Solms, 2004). The studies that are the theoretical foundation of Business continuity planning Methodology (Lindstrom, Samuelsson, Hagerfors, 2010) illustrate what a critical role senior management has in promoting and financing ongoing education of business continuity from the standpoint of IT security and lifecycle planning.
The maturity model shown in Figure 1 explains the progression of business continuity from the studies conducted and concludes that ongoing training, a commitment to changing the culture of an organization to support IT security, as a strategic threat is essential. The model also reflects the fact that funding of education programs is vital if an organization is to respond to threats effectively and thoroughly in the future.
“Staircase” methodology applied on organizational and department level
Source: (Lindstrom, Samuelsson, Hagerfors, 2010, pg. 249)
Jacques Botha, & Rossouw Von Solms. (2004). A cyclic approach to business continuity planning. Information Management & Computer Security, 12(4),.