[BCDR] freno - Audit Required #184
Description
BCDR Audit Required
The service freno requires an up-to-date BCDR (Business Continuity and Disaster Recovery) audit.
Due Date
📅 Due: May 16, 2026
Why Audits Are Required
BCDR Audits are required to satisfy various compliance audits and regulations, including DORA, ISO, and MSIA. Additionally, high-value customers with "right to audit" clauses require us to demonstrate well-documented and tested disaster recovery processes. Audits must be completed at least every 12 months.
Current Status
BCDR audit completed on 2025-05-16, expires on 2026-05-16
Audit Process Overview
The BCDR audit process consists of three main steps:
- Create a BCDR Audit - Start a new audit in Internal Statuspage
- Ensure Documentation is Accurate - Review dependencies, service data classification, and playbooks
- Disaster Recovery Testing - Test all required scenarios with documented results
Required Actions
- Renew BCDR Audit
- Service freno BCDR audit expires/expired on 2026-05-16 and needs to be renewed.
- View details
Key Documentation Requirements
Dependency Analysis
Perform a service dependency review and ensure the ownership.yaml file accurately represents all direct dependencies.
Service Data Review
If your service stores data directly, you must:
- Classify the data according to service data classification guidelines
- Verify that all backups are immutable (critical for security)
- Document RPO and RTO for the data
Playbook Requirements
Playbooks must:
- Cover all required disaster scenarios for your service
- Be reviewed at least every 6 months
- Include steps for handling security incidents
- Be tested within the last 12 months
Resources
Need Help?
Reach out in the #bcdr Slack channel where the Incident Lifecycle team can assist.
This issue was automatically created by the BCDR Scorecard system. It will be automatically closed when the audit requirement is met.