Ch03 - Management of Information Security, 2nd ed. 3-1...

Info iconThis preview shows pages 1–4. Sign up to view the full content.

View Full Document Right Arrow Icon
Management of Information Security, 2 nd ed. 3-1 Chapter 3 Planning for Contingencies At a Glance Instructor’s Manual Table of Contents Chapter Overview Chapter Outline Chapter Objectives Setup Notes Lecture Notes and Teaching Tips with Quick Quizzes Discussion Topics Key Terms Additional Project Ideas
Background image of page 1

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full DocumentRight Arrow Icon
Management of Information Security, 2 nd ed. 3-2 Chapter Overview The third chapter of the book will articulate the need for contingency planning and explore the major components of contingency planning. In this chapter, the reader will learn how to create a simple set of contingency plans using business impact analysis and prepare and execute a test of contingency plans. Chapter Outline Lecture Topics Page # Introduction 60 What Is Contingency Planning? 61 Components of Contingency Planning 64 Business Resumption Planning 93 Testing Contingency Plans 99 Contingency Planning: Final Thoughts 100 Chapter Objectives When you complete this chapter, you will be able to: Understand the need for contingency planning Know the major components of contingency planning Create a simple set of contingency plans, using business impact analysis Prepare and execute a test of contingency plans Understand the unified contingency plan approach
Background image of page 2
nd ed. 3-3 Setup Notes This chapter could be completed in a single class session, if there is sufficient time to cover the material. Unless the students have not had the opportunity to read the material in advance (in some settings, the textbooks are not made available until the first class meeting), it may be prudent to have a general discussion of the topic, with detailed lecture to follow at the next class meeting. The subject matter can be covered in 1.25 to 2.5 hours. Lecture Notes and Teaching Tips with Quick Quizzes Introduction This chapter focuses on planning for the unexpected event, when the use of technology is disrupted and business operations come close to a standstill. “Procedures are required that will permit the organization to continue essential functions if information technology support is interrupted.” On average, over 40% of businesses that don't have a disaster plan go out of business after a major loss. Quick Quiz 1. What percentage of businesses without a DRP go out of business after a major loss? ANSWER: 40% What Is Contingency Planning? The overall planning for unexpected events is called contingency planning (CP). CP is the process by which organizational planners position their organizations to prepare for, detect, react to, and recover from events that threaten the security of information resources and assets, both human and artificial. After an unexpected event, the main goal of CP is the restoration to normal modes of
Background image of page 3

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full DocumentRight Arrow Icon
Image of page 4
This is the end of the preview. Sign up to access the rest of the document.

This note was uploaded on 06/19/2009 for the course ITCS ITCS937 taught by Professor Watfa during the Summer '09 term at University of Warsaw.

Page1 / 23

Ch03 - Management of Information Security, 2nd ed. 3-1...

This preview shows document pages 1 - 4. Sign up to view the full document.

View Full Document Right Arrow Icon
Ask a homework question - tutors are online