The latest business continuity news from around the world

Report captures lessons from Australian Taxation Office outages

The Australian Taxation Office (ATO) has released a report into systems outages that it experienced in December 2016 and February 2017. The report incorporates findings from ATO’s own internal review, as well as technical advice and a separate report prepared by independent expert reviewers.

Key findings from the report include:

  • The outage was caused by multiple component failures on the ATO’s primary storage area network (SAN), which was supplied and operated by Hewlett Packard Enterprise.
  • The impact of the outage was compounded by the design and configuration the SAN: the review found that there was an over emphasis on performance features rather than stability or resilience.
  • ATO business continuity mechanisms, communications and engagement worked well, but into the future need to be more inclusive of partners.

Recommended improvements

The report identifies areas for improvement, classified into five themes:

  • Principles informing ATO IT design;
  • correcting the identified faults;
  • Enhancing ATO’S capability to support infrastructure design and IT governance;
  • Incident responses for the ATO and the wider tax system;
  • Managing communication and business resumption with stakeholders.

Business continuity aspects of the report

The report recommends that enhancements are made in ATO’s existing IT‑related business continuity management functions to provide an enterprise‑wide focus on preparing for, testing, and responding to disruptive events. This should include establishing a permanent and dedicated resilience ‘run’ function within the appropriate balance of performance, stability, resilience and cost factors.

The report also recommends that ATO consolidates, streamlines, updates, and simplifies existing business continuity management documentation to clearly articulate the relationship between and accountability for
business continuity, disaster recovery, and resilience planning.

The ATO should assist key stakeholders to understand its business continuity strategies to assist them in improving their own continuity strategies. This will help improve the resilience of the entire Australian tax and super system. These strategies should be designed with a whole of system approach to ensure they are streamlined and easily integrated.

Read the full report (PDF).



Want news and features emailed to you?

Signup to our free newsletters and never miss a story.

   

A website you can trust

The entire Continuity Central website is scanned daily by Sucuri to ensure that no malware exists within the site. This means that you can browse with complete confidence.

Business continuity?

Business continuity can be defined as 'the processes, procedures, decisions and activities to ensure that an organization can continue to function through an operational interruption'. Read more about the basics of business continuity here.

Get the latest news and information sent to you by email

Continuity Central provides a number of free newsletters which are distributed by email. To subscribe click here.