Business Impact Analysis

A BIA measures how badly a disruption to a process hurts over time. In Resilira you score each process on a locked 4×5 matrix: four impact categories (financial, operational, legal/regulatory, reputational) across five time horizons (1h, 4h, 24h, 72h, 1 week), each on a 0–5 scale.

What gets derived

• MTPD (Maximum Tolerable Period of Disruption): the first horizon at which worst-case impact becomes severe (≥4).
• RTO (Recovery Time Objective): you must recover before MTPD — set to the horizon just before the severe one.
• RPO (Recovery Point Objective): data-loss tolerance, derived from how fast operational/financial impact climbs, never larger than RTO.
• Criticality score (0–100): a horizon-weighted mean of worst-case impact — a process that hurts within an hour scores higher than one that only hurts after a week.

The score maps to a tier: Tier 0 (mission critical) → Tier 3 (standard). These objectives are written back onto the process and feed plans, compliance and incident response.