Disaster recovery

Cont. Plan and Disaster Recovery University of Cumberlands Date: 06/17/2018 Table of Contents Page No Introduction -------------------------------------------------------------------------- 3 Background --------------------------------------------------------------------------- 4 Impact of Hurricane Katrina ------------------------------------------------------- 5 Disaster Recovery and Business Continuity

CYBERSECURITY • To inspect and/or establish internal policies and procedures to guarantee that personnel are aware of their cybersecurity responsibilities and that the corporation is not making internal declarations that could reveal the corporation to liability. • To inspect all external declarations concerning the state of the corporation’s cybersecurity to guarantee the corporation is not making external declarations that could reveal the corporation to liability. • To inspect third-party contracts

Security Policies The critical factor of network development is security planning. Without doing a full hazard appraisal, it is unrealistic to get ready for security. This security arranging includes creating security policies and executing controls to keep PC dangers from getting to be reality. Figure 7 : Security Plan Every organization is distinctive and should arrange and make policies

EXECUTIVE SUMMARY Objective: To concisely summarize the existing condition, the possible risks and its mitigation, and a detailed business continuity/ disaster recovery plan. The document contains the following sections: Introduction & Problem Statement: This section introduces the current situation and then states the problem at hand that needs to be dealt with. Critical Asset Identification: This section identifies the critical assets and the associated potential losses if these assets were damaged

In case of the university, this team would handle the backup and recovery of student data, managing redundancy for the exchange servers, SharePoint server, etc. The off-site servers for student data and the backup processes would all be part of this disaster recovery team. For example, this team would be responsible to create redundancy in terms of multiple types of backups like CD, tape, etc. This team also reports

• Identifies the person(s) responsible for any actions that need to be taken 2. Scope The scope of DLIS is to plan and implement a working BCP to be used in the event of a disaster or crisis. This plan will ensure that first and foremost all employees and staff will remain safe during all procedures. In the event of a disaster or crisis, a phone tree will be used to ensure that all employees and staff are notified. Everyone will then start the actions required of them

may develop different procedures. Before the incident Finally, the planners draft a third set of procedures, those tasks that must be performed to prepare for the incident. These procedures include the details of the data backup schedules, disaster recovery preparation, training schedules, testing plans, copies of service agreements, and business continuity plans, if any. Preparing to Plan Planning for an incident and the responses to it requires a detailed understanding of the information systems

RECOVERY OPTIONS Disaster recovery plan consists of protecting and recovering information systems to resume normal business operations in the most cost-effective manner. A disaster recovery plan ensures that all business processes and systems can be restored to its original state. Personnel are critical to the recovery of the restoration of business processes; therefore it is essential to have well-trained staff that will remain calm during an emergency, realize the potential threats that may affect

technological disaster or a terrorist attack in the future in the areas of preparedness response and recovery efforts. Primarily, leadership and guidance were the first problems before, during and after Katrina, even though there was a National Plan in place on how to proceed (Menzel, 2006). However, government officials were unfamiliar with it and were reacting

encryption, scrambling data, public and private key encryption methods, fire walls, secure network access, security monitors, virus defenses, security codes, backup files, biometrics controls, computer failure controls, fault tolerant systems, and disaster recovery planning. 2. What potential security problems do you see in the increasing use of intranets and extranets in business? What might be done to solve such problems? Give several examples.