ABSTRACT
Although the business continuity program policy may not
specify types of tests or the number of tests to be con-
ducted, it is imperative that the information security pro-
fessional understand the types of test that can be conducted
to determine if business continuity plans are viable and
executable. Table 1 provides an example of a business
continuity program policy.