Stress testing is an important component in effective risk management as well, enabling companies to evaluate different security scenarios and the complex interactions those scenarios may present. Simply stated, stress testing answers “what if” questions about key vulnerabilities.
Few companies, however, include funding or resources for stress testing information governance programs. Whether the program is characterized as records management, records and information management, enterprise content management or information governance, they all have similar goals. These include improving compliance with record-keeping requirements, increasing the accessibility of historic business data and reducing the risk of information being improperly accessed or altered.
But even these conventional objectives fade in significance when compared to the importance of being able to find and rely on designated, specific information assets to make quick business decisions. A company’s success demands that data asset-pertinent information is readily available. Even with corporate leadership’s renewed information governance focus, however, the inability to quickly locate information assets is almost always overlooked as a key risk indicator that may mark the failure of a particular business objective.
Stress testing your information governance program is a structured methodology for measuring the adequacy, availability, integrity and velocity of your vital data assets in scenarios that are essential to business success. The driving goal is to demonstrate, before those scenarios are played out in real-time, that you can deliver the information within defined metrics.
The above excerpt is taken from the article Bottom-line benefits of a risk stress test for information governance. I would encourage you to refs the whole article to learn about stress testing information governance can provide benefits in joint venture disclosures, product validation and unauthorized intrusion.