Laserfiche WebLink
Q. Disaster Recovery. <br />The Bank's disaster contingency plans, contact list and backup systems which would <br />enable the City to continue operations and provide services to its citizens in the <br />event of systems breakdowns or other emergencies are important to the City's <br />ability to provide continuous services to its residents and local business community. <br />Describe the Banks disaster recovery plan in detail. <br />As an integral part of normal business operations within J.P. Morgan, every <br />manager in the firm is responsible for developing and maintaining resiliency <br />plans as part of the firm wide Resiliency Management Program, part of the firm's <br />Global Resiliency and Information Technology Risk Management department. <br />Resiliency activities of J.P. Morgan must comply with and are governed by <br />several agencies that have laws, rules and regulations. Within the firm's policy, <br />requirements have been defined for each critical business process to provide <br />essential business and technology service levels to comply with resiliency <br />requirements of the Office of the Comptroller of the Currency, the Federal <br />Financial Institutions Examination Council (FFIEC), the Interagency White <br />Paper on Sound Practices to Strengthen the Resilience of the U. S. Financial <br />System and regulatory agencies within the different geographic regions. <br />Resiliency planning is also commonly referred to by terms within the industry as <br />business continuity, disaster recovery and contingency planning; they all <br />represent the process whereby financial institutions ensure the maintenance or <br />recovery of operations and service to their clients. <br />Resiliency plans must explicitly address the business, operations and technology <br />components of a business process, including those critical processes and <br />functions provided by outside service providers and industry utilities. <br />Contingency locations are an integral part of resiliency planning. In combination <br />with the firm's testing program the locations ensure that the business resiliency <br />plans remain accurate, relevant and operable to minimize disruption to our <br />clients. Critical resiliency plans are tested annually, at a minimum, to verify the <br />effectiveness of alternate locations and to demonstrate that the plans remain <br />accurate and executable. <br />J.P. Morgan's resiliency plans are subject to reviews by J.P. Morgan's Internal <br />Audit Department and the Resiliency Risk Management group, which acts as the <br />firm's governing body for Business Resiliency measures. The plans must address <br />and comply with documented organizational requirements. All findings are <br />escalated to the business units, Risk Management and division executive for <br />review. The firm's Board of Directors reviews the status of the overall resiliency <br />program on an annual basis. <br />J.P. Morgan's exercises commercially reasonable efforts to ensure that the firm <br />meets our obligations to you and to all of our clients. The firm's resiliency <br />program provides comprehensive business impact analysis, risk assessment, <br />Page ga <br />