project paper final - Disaster Recovery Plan In partial...

Info iconThis preview shows pages 1–5. Sign up to view the full content.

View Full Document Right Arrow Icon
Disaster Recovery Plan In partial fulfillment of the requirements in CIS835M – Risk Management Wednesday, 6:00 pm – 9:00 pm Submitted by: Billones, Maureen Olive Chang, Hung Chuan Cristobal, Ma. Theresa Del Rosario, Jeremy Mag-ampo, Rolando Submitted to: Mr. Federico Gonzalez December 12, 2007
Background image of page 1

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full DocumentRight Arrow Icon
Table of Contents (later ko na ko to gawin kapag complete na lahat)
Background image of page 2
I. EXECUTIVE SUMMARY The proponents made a study of the financial management information and tracking system (FINMITS) of Department of trade and Industry (DTI). The study comprises the five components of the information system which are the People, Software, Network, Database and Facilities. The proponents through careful examination of the existing setup of FINMITS in DTI found several components to be below the standards, threat are likely to occur through many vulnerabilities of the existing setup. In light with the findings of the study, the proponents have prepared proposed solution to rectify such vulnerabilities. Hoping to eliminate future disturbance that might disrupt the smooth operation of FINMITS An information system of Department of Trade and Industry is involved in this study. This information system is the Financial Management Information and Tracking System (FINMITS). The proponents are to follow a methodology that would help them assess the various risks involved in the five (5) components of the information system. These five components are Facilities, Software, Network, Database, and People. The risks are going to be assessed based on their severity to the components of the information system as well as their likelihood of occurrence. The threat that all of the components are involved with is the threat on data security. This threat involves data backup, workstation policies, firewall, facilities, and access controls. All of these components involve the five (5) components of the information system. A business impact analysis is performed on this threat by assessing its impact on the critical business functions of DTI-FINMITS, and by also analyzing its maximum tolerable outage (MTO) on recovery through three (3) perspectives, which are: loss of data, alteration of data, and information theft. After the business impact analysis is performed and the current preventive measures are assessed, a disaster recovery plan is made to provide for the recommendation of the proponents to the organization. The disaster recovery plan involves three (3) phases. These phases are: before the disaster (mitigation, avoidance, and prevention), during the disaster (within MTO), and after the disaster (exceeding MTO). 1
Background image of page 3

Info iconThis preview has intentionally blurred sections. Sign up to view the full version.

View Full DocumentRight Arrow Icon
II. INTRODUCTION All kinds of organizations face risk, the possibility that a hazard will cause loss or damage even those whose future is assured. Sadgrove (2005) cited that there are two types of business risk. The first and the more traditional one is non-entrepreneurial risk such as fire, pollution or fraud. The second type is entrepreneurial risk. This happens when a company builds a new plant, launches a new product or buys a company. If the
Background image of page 4
Image of page 5
This is the end of the preview. Sign up to access the rest of the document.

This note was uploaded on 01/05/2011 for the course IE IE377 taught by Professor Hani during the Spring '10 term at German University in Cairo.

Page1 / 63

project paper final - Disaster Recovery Plan In partial...

This preview shows document pages 1 - 5. Sign up to view the full document.

View Full Document Right Arrow Icon
Ask a homework question - tutors are online