A Proposed Model for Organizational Gap Analysis to Implement Continuous and Hardening of Operations Requirements Base on BS 25999

Availability and continuity of information
and key processes that support the core IT services by hardening the computer systems against the attacks as a passive defence principle, has been one of the most
important issues facing companies in electeronic passive defences and cyber
defence that are generally managed by implementing the relevant security standards. In this
research, 36 critical success factors for implementing business continuity
management were extracted from the comprehensive study of literature. These
indicators were sent to 83 experts, among which 64 were collected and analyzed
which after exploratory factorial analysis categorized them in 9 factors and
also they were all approved by binomial test. Harmonic mean was used to
calculate the weight of factors and components and finally a model including
the effective factors and weight of their importance for organizational gap
analysis to implement business continuity management system, was proposed. The
proposed model was implemented and tested in two IT service provider companies.