week03 - Week 03 ITC482 Computer Management & Security...

Info iconThis preview shows pages 1–6. Sign up to view the full content.

View Full Document Right Arrow Icon
ITC482 Computer Management & Security Week 03 Management of Information Security, 2nd ed. - Chapter 3 Slide 2 Learning Objectives Upon completion of this material, you should be able to: Understand the need for contingency planning Know the major components of contingency planning Create a simple set of contingency plans, using Business Impact Analysis Prepare and execute a test of contingency plans Understand the combined contingency plan approach
Background image of page 1

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full DocumentRight Arrow Icon
Management of Information Security, 2nd ed. - Chapter 3 Slide 3 Introduction This chapter focuses on planning for the unexpected event, when the use of technology is disrupted and business operations come close to a standstill Procedures are required that will permit the organization to continue essential functions if information technology support is interrupted Over 40% of businesses that don't have a disaster plan go out of business after a major loss Management of Information Security, 2nd ed. - Chapter 3 Slide 4 What Is Contingency Planning? The overall planning for unexpected events is called contingency planning (CP) It is how organizational planners position their organizations to prepare for, detect, react to, and recover from events that threaten the security of information resources and assets The main goal is the restoration to normal modes of operation with minimum cost and disruption to normal business activities after an unexpected event
Background image of page 2
Management of Information Security, 2nd ed. - Chapter 3 Slide 5 CP Components Incident response planning (IRP) focuses on immediate response Disaster recovery planning (DRP) focuses on restoring operations at the primary site after disasters occur Business continuity planning (BCP) facilitates establishment of operations at an alternate site CP Components (continued) To ensure continuity across all of the CP processes during the planning process, contingency planners should: Identify the mission- or business-critical functions Identify the resources that support the critical functions Anticipate potential contingencies or disasters Select contingency planning strategies Implement selected strategy Test and revise contingency plans Management of Information Security, 2nd ed. - Chapter 3 Slide 6
Background image of page 3

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full DocumentRight Arrow Icon
Management of Information Security, 2nd ed. - Chapter 3 Slide 7 CP Operations Four teams are involved in contingency planning and contingency operations: The CP team The incident recovery (IR) team The disaster recovery (DR) team The business continuity plan (BC) team Management of Information Security, 2nd ed. - Chapter 3 Slide 8 Putting a Contingency Plan Together The CP team should include: Champion Project Manager Team Members Business managers Information technology managers Information security managers
Background image of page 4
Management of Information Security, 2nd ed. - Chapter 3 Slide 9 Contingency Planning NIST describes the need for this type of
Background image of page 5

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full DocumentRight Arrow Icon
Image of page 6
This is the end of the preview. Sign up to access the rest of the document.

Page1 / 35

week03 - Week 03 ITC482 Computer Management & Security...

This preview shows document pages 1 - 6. Sign up to view the full document.

View Full Document Right Arrow Icon
Ask a homework question - tutors are online