Look here for federal cyber contingency plan pdf help and FAQ's. You are accessing a government computer system. Requirements for Business Contingency
Look here for federal cyber contingency plan pdf help and FAQ’s. You are accessing a government computer system. Requirements for Business Contingency and Continuity Plans By: Amy Wees CSEC650, 9045 April 21, 2013 Abstract: Technology plays a vital role in business and threats to technology are constantly evolving.
Businesses must be ready to react to a multitude of situations from a computer virus to a hurricane. Abstract: Technology plays a vital role in business and threats to technology are constantly evolving. The only way to react successfully is to have a well-written, well-tested contingency and continuity plan. Finally, the plan must remain actionable and up-to-date, and the best way to ensure this is through training personnel and testing the plan on a regular basis. On 17 April, 2013 a giant explosion ripped through the small town of West, Texas after the West Fertilizer Company plant caught fire. Many are probably wondering how this happened and if the explosion could have been prevented.
2006 for a lacking risk management plan that failed to address safety hazards, employee training, and maintenance procedures. Even if West Fertilizer has insurance to cover the damage of the building and company assets, the costs during the disaster recovery could be far more than West can afford. Insurance may not cover the medical expenses and deaths of the citizens harmed from the explosion. How will displaced employees be paid? Will there be law suits? Did pertinent company data needed to continue operations or file damage claims get lost in the fire? Although the fire may not have been preventable, a contingency and continuity plan would help West Fertilizer Company pick up the pieces and continue operations.
West Fertilizer is not alone in their lack of business continuity and disaster recovery planning. Of the companies that did have plans, the survey reported that the greatest motivation was the reputation of the business and customer satisfaction, followed by compliance with regulations and past experiences with operational hiccups. Businesses reported that network operations, malware and data corruption were considered highly threatening along with natural disasters such as fires and blackouts. It is obvious businesses should be concerned with contingency and continuity planning as it is only a matter of when, not if, something happens that can shut the business down.
Today more than ever, businesses are dependent on technology such as computers, networks, mobile devices and the Internet to run their businesses. Protecting these assets from cyber security threats and service disruptions is paramount to the bottom line and customer satisfaction. However, in order to convince management that business continuity planning is a worthwhile investment management must understand the return on their investment and design a plan that weighs the benefits of implementing cyber security, maintenance, and safety protocols against the costs of installing these protocols. In calculating a ROI, the purchase of the proposed solutions, the cost of employee training, and the cost of paying the staff who will manage the solutions should be included.
Consider these points. A table top contingency drill could be similar to this to test employees’ awareness of what to do in various scenarios would be helpful. E documentation for all IT, ups of procedures. And managed such that it can work together in any combination that events demand and maintain an expected level of readiness so that all required cybersecurity assets can be brought to bear in a rapid and flexible manner to meet new or changing mission needs. Creating and maintaining business contingency and continuity plans — and acceptance of data among participants. Coordinates and advocates resources for DoD, this type of drill is not recommended for businesses without a hot site as there would be too much risk to operations. The DoD ISRMC, wide and government, integrates new CD requirements into DoD Enterprise CD services.