How does this connect to the rest of Fig?

A DR exercise failure automatically creates a control consequence that affects your compliance scoring. Service dependencies link to your asset register and supplier risk assessments. Everything is connected.

Does this replace our existing BCP documents?

Fig structures your continuity planning in the platform with version control, review cycles, and evidence linking. You can import existing plans and add governance workflows on top.

What regulatory requirements does this cover?

ISO 22301 Business Continuity Management, NIS2 Article 21 operational resilience, DORA ICT continuity requirements, and Cyber Essentials incident planning controls.

Can we run DR exercises through Fig?

Yes. Plan tabletop or live exercises with defined scenarios, assign roles, track actions during execution, and document findings. Remediation actions are tracked through to closure with full audit trails.

How does service dependency mapping work?

Fig builds dependency graphs from your asset register, integration data, and manual input. It identifies single points of failure, calculates cascade impact, and shows which services are affected if a dependency fails.

Business Continuity & Disaster Recovery

Name: Fig Group
Address: 167-169 Great Portland Street, London, W1W 5PF, GB
Telephone: +44 (0) 203 105 2335

The Challenge

Does this sound familiar?

Business continuity plans live in Word documents that nobody reads. Impact analyses are done once and never updated. DR exercises are either skipped or produce findings that go untracked.

How Fig Helps

Business Continuity & DR with Fig

Business Impact Analysis

Structured BIA with criticality scoring, recovery priority ranking, and RTO/RPO definitions for every critical service. Linked directly to your asset register and service dependencies.

Service Dependency Mapping

Visualise how services depend on each other, on vendors, and on infrastructure. Single points of failure identified automatically. DR planning grounded in real architecture, not assumptions.

DR Exercise Management

Plan, execute, and document disaster recovery exercises with structured scenarios. Findings tracked through to remediation. Compliance with NIS2, DORA, and ISO 22301 exercise requirements.

Continuity Strategy

ICT continuity strategies documented and linked to critical services. Backup and restore validation with RTO/RPO compliance checking. Management review integration.

Core Capability

Fig uses organisational context to establish BCDR baselines and integrates with the supplier management module to adjust requirements dynamically as the threat landscape changes.

Built For You

Who uses this?

MSPs & MSSPs

Standardised BCDR across client portfolios. Exercise scheduling, finding management, and service dependency views for every client.

Learn more

Security & Risk Teams

Board-ready continuity reporting. Service dependency graphs show real exposure. DR exercise results feed directly into compliance evidence.

Learn more

Compliance & Audit

Complete BCDR evidence chain from BIA through strategy, exercises, and management review. Meets ISO 22301, NIS2 Article 21, and DORA operational resilience requirements.

Learn more

Protect

Common questions

See Business Continuity & DR in action

Book a walkthrough tailored to your frameworks and tooling.

Request a Demo

Business Continuity & DR

Does this sound familiar?

Business Continuity & DR with Fig

Business Impact Analysis

Service Dependency Mapping

DR Exercise Management

Continuity Strategy

Who uses this?

MSPs & MSSPs

Security & Risk Teams

Compliance & Audit

Related solutions

Vulnerability Scanning

Threat Intelligence

Supplier Risk Monitoring

Common questions

See Business Continuity & DR in action