Premium Essay

Bcp and Drp

In: Computers and Technology

Submitted By jribjay
Words 1369
Pages 6
In today’s volatile environments, an organization is responsible for developing, practicing, and maintaining both a continuity and disaster recovery plan. Enterprise, organizational, and business continuity plans all have the same roots. These programs shape the methods and actions required to maintain an acceptable level of business function while facing a myriad of operational challenges (Lindros & Tittel, 2014). The variables that create these challenges may in include, but not limited to, environmental disasters, internal mishaps, and political unrest. Nonetheless, a complete enterprise continuity plan (ECP) includes an organizational disaster recovery plan (DRP) for technical systems restoration. A DRP serves to outline the process and procedures needed by an organization’s information technology team when restoring critical technical systems after a crisis (Lindros & Tittel, 2014).

The university is hoping to become as a center of academic excellence through a certification presented by the National Security Agency (NSA). With this certification, the school may see the possibility of increased funding from the government and external organizations. Additionally, other designations may include, but not limited to, research awards, the hiring of esteemed faculty members and the increase in enrollment. The organization will have to develop and show the execution of their ECP and DRP, to achieve the NSA certification. To kick this off the school must first assess several areas before structuring the plans. The university must identify what the program will encompass, key areas to focus on in the organization, critical services offered by the organization, and dependence on internal and external entities (Lindros & Tittel, 2014). Furthermore, the school must settle on the downtime requirements and the methods used to maintain full operation in…...

Similar Documents

Premium Essay

Disaster Recovery Plan Term Paper

...preparedness tests which are also known as simulations. Walk-through tests shall definitely be there in the DRP test plan since the reading or walking through the plan is done to make sure that all phases are managed competently under the unfortunate circumstances. Simulations Simulations usually consist of a localized version of a full test, wherein actual resources are expended in the simulation of a system crash. This test is performed regularly on different aspects of the plan and can be a cost-effective way to gradually obtain evidence about how good the plan is. It also provides a means to improve the plan in increments. Simulations shall also make an integral part of our DRP plan as they actually put the plan through its pieces and confirms that at least in theory the proposed disaster recovery plan can be put into practice without too much trouble. Parallel testing This is a way of testing the plan under which any previous business day’s all transactions are processed through the BCP system and it is checked to see if the results matched with the previous results. Parallel testing will also be included in our BCP plan, since parallel testing is essentially an assurance testing method by which the organization can at least be certain about the effectiveness of the BCP or DRP plan, that they would work fine and as intended when the need for the implementing the DRP plan would arise (Gewurtz, 2009). Full interruption This is one step away from an actual......

Words: 1568 - Pages: 7

Premium Essay

Unit 6

...countermeasures to reduce the risk and uses risk mitigation to identify threats to business processes and data systems. A business impact analysis (BIA) is an analysis of the business as a whole to determine what kinds of events will have an impact on what systems. 2. A Disaster Recovery Plan (DRP) establishes an emergency operations center (EOC) as an alternate location from which the Business Continuity Plan (BCP) / DRP will be coordinated and implemented, names an EOC manager, and determines when that manager should declare an incident a disaster. A BCP is designed to help an organization to operate during and after a disruption, covers all functions of a business, and generally includes only mission-critical systems. 3. Purpose and scope, assumptions and planning principles, system description and architecture, responsibilities, notification or activation phase, recovery and reconstitution phases, training, testing, maintenance, DRPs, Business Impact Analysis (BIA), Computer Incident Response Team (CIRT) Plans, and Risk Assessments. 4. The main difference is that a DRP is a plan to get the business back up and running from backup tapes and equipment in the event of a disaster and a BCP is a plan to continue critical business functions until the network and business is back up to 100% from an event. 5. A risk assessment and BIA are used to identify and evaluate risks based on importance or impact of severity to the business’ processes and data systems and what......

Words: 379 - Pages: 2

Premium Essay

Internet Security

...operations). For instance, if the ability to take phone calls is a critical business operation (i.e. maybe you run a help desk), then you may define, in your BCP, what may cause a phone interruption, and what procedures you would take to respond to it. Conversely, as stated by Massimo, the Disaster Recovery Plan (DRP) is a subset of your BCP. The DRP specifies the further reaching implications of disaster -- where your primary place (or all places) of business are uninhabitable. Not only is this relevant to your place of business, but your workforce as well (Workforce Continuity). 3. Typically, a business continuity plan is also a compilation or collection of other plans. What other plans might a BCP and all supporting documents include? Disaster Recovery Plan (DRP), Incident Response Plan (IRP) and Business Impact Analysis (BIA) Critical Business Functions (CBF). 4. What are the main difference between a Disaster recovery Plan (DRP) and a Business Continuity Plan (BCP)? DRP list the recovery plan for systems and functions of a business. BCP usually will list every aspect of a business, positions, whom to contact and the how the business should function from the bottom up. 5. What is the purpose of a risk assessment and business impact analysis? Why is this an important First step in defining a BCP and DRP?...

Words: 354 - Pages: 2

Premium Essay

Ivp4 vs Ipv6

...undertaken to minimize the resulting risks to an acceptable level. b. Business Impact Analysis (BIA) is the key to a successful BCP implementation. Understanding and standardizing Enterprise business process names is critical to the success of the BIA. The intent of the BIA process is to help the organization’s management appreciate the magnitude of the operational and financial impacts associated with a disaster or serious disruption. When they understand, management can use this knowledge to calculate the recovery time objective (RTO) for time-critical support services and resources. For most Organizations, these support resources include: Facilities - IT infrastructure (including voice and data communications networks) - Hardware and software - Vital records Data - Business partners The connection is made when each of the time-critical business processes is mapped to the above supporting resources. 2. What is the difference between a disaster recovery plan (DRP) and a business continuity plan (BCP)? a. Disaster Recovery Plan (DRP) is plan for the intervention taken by an organization to minimize further losses brought on by a disaster and to begin the process of recovery, including activities and programs designed to restore critical business functions and return the organization to an acceptable condition. b. Business Continuity Plan (BCP) is an ongoing process supported by senior management and funded to ensure that the necessary steps are taken to identify the......

Words: 966 - Pages: 4

Premium Essay

Bcp - Business Continuity Plan] | 5/16/2013 | | Part 1 I. Initiation of the BCP The initiation of a BCP is an effort by the company to ensure that mission-critical functions of the organization have the ability to continue operations in the event of a disruption. II. Business Impact Analysis The BIA is the part of the BCP that prioritizes mission-critical functions and processes and accesses the impact of various types of disruptions. This includes but is not limited by intruders, injections, server crashes and more. III. Business Continuity / Disaster Readiness / Recovery Business continuity is described as the ability of a business to continue to operate during and after a disaster. Disaster Readiness is how well an organization is prepared to handle a disaster. Recovery is what must be done in the event of a disaster to bring the organization back to normal functionality. IV. Develop & Implement the Plan This is the process of creating a plan that details how the organization will react in the event of a disaster, and the implementation of the plan is informing management, employees, and customers of the new policies. V. Test & Update the Plan The testing of the plan consists of either simulations or full-blown test of the plan. This will help to identify anything that was missed in the development phase and allow for the plan to be properly updated. Part 2 Lab 8 Questions 1. A BCP can help to mitigate risk because it highlights the......

Words: 456 - Pages: 2

Premium Essay

Drp / Ecp

...DRP/ECP January 14, 2014 Content: 1. Roles of the DRP/ECP team 2. Six Resilience layers a) One example of each resilience layer 3. DRP Training 4. Criteria for choosing outside expertise 5. Developing an awareness campaign a) Evaluate one method of awareness campaign Roles of the DRP/ECP Team • Declares a disaster has occurred • Maintain current documentation of the DRP • Responsibility of staff • Testing DRP Six Resilience Layers 1. 2. 3. 4. 5. 6. Strategy Organization Processes Data / Application Technology Facilities / Security Outline of Resilience Layers 1. Strategy • Achieving business goals and objectives • Complete resilience assessment: • Determine the baseline for the organization • Asses vulnerabilities and risk • Success of resilience plan Outline of Resilience Layers 2. Organization • • • • • Executive committee sponsor Details roles and responsibilities Accountabilities Communication Skills important to the organization Outline of Resilience Layers 3. Processes • Creating and sustaining a processes • Alternate processes and procedures • Contingency plan Outline of Resilience Layers 4. Data / Application • • • • • Reliable data provided Alignment of disparate data and application Measurement of Key application Modification of application and data Testing of applications Outline of Resilience Layers 5. Technology • • • • Hardware and software Aligning IT investment with business objective Primary site vs.......

Words: 330 - Pages: 2

Premium Essay


...Turkey and United Kingdom. Technical Notes and Manuals 11/05 | 2011 1 Figure 1: Perceived Treasury Risks Treasury Risks operational Risks Financial Risks Risks Addressed by BCP Business Risks • business risks: such as new legislation, change of government, macro-economic performance and any other factors affecting the ministry of finance’s environment—these are often managed as part of the budget planning process • operational risks: a range of threats from loss of key personnel, settlement failure, and compliance failure, to theft, systems failure and building damage—operational risk management aims to ensure the integrity and quality of the operations of ministry of finance and treasury using a variety of tools including audit, recruitment policies, system controls, and business continuity planning. Awareness of operational risk is low in many countries, and very few ministries of finance have a business continuity and disaster recovery plan (BCP/DRP). Often it is perceived as something applicable only to the private sector and attracts little attention by senior management. This is because it is not seen as important or a priority, there are inadequate resources allocated to establish and maintain an operational risk management (ORM) framework including BCP/DRP, responsibility is delegated to information technology, and it becomes a one-off project rather than an integral part of the day-to-day treasury operations. Management neglect is often......

Words: 10882 - Pages: 44

Premium Essay


...Quantitative risk analysis 5. Which type of risk analysis uses relative ranking? A. Objective risk analysis B. Qualitative risk analysis C. Subjective risk analysis D. Quantitative risk analysis 6. Which risk-analysis value represents the annual probability of a loss? A. EF B. SLE C. ALE D. ARO 7. Which risk-response option would best describe purchasing re insurance? A. Accept B. Mitigate C. Transfer D. Avoid 8. Which risk response would be most appropriate if the impact of a risk becoming a reality is negligible? A. Accept B. Mitigate C. Transfer D. Avoid 9. Which of the following statements best describes the relationship of a BCP to a DRP? A. A BCP is required but a DRP is not B. A DRP is a component of a BCP C. A DRP is required but a BCP is not D. A BCP is a component of a DRP 10. Which term is used to indicate the amount of data loss that is acceptable? A. RAI B. ROI C. RTO D. RPO 11. A(n) ________ identies processes that are critical to the operation of a business. 12. Which risk-assessment methodology is marketed as a self-directed approach and has two different editions for organizations of different sizes? A. CRAMM B. OCTAVE C. NIST D. EBIOS 13. ________ is the U.S. security-related act that governs health-related information....

Words: 323 - Pages: 2

Premium Essay

Lab 6 Security

...Name: Instructor Name: Lab Due Date: Overview In this lab, you implemented a portion of your organization’s BCP. Based on the BIA, the organization determined that the internal Active Directory database and the corporate Web site must be recoverable in the event of system failure or natural disaster. To accomplish this, you configured local backups of Active Directory on the existing virtual server using Windows Server Backup. You also configured the organization’s Web servers to host content from a single NFS share, and back up that NFS share daily using Windows. Lab Assessment Questions & Answers 1. What is the purpose of the business impact analysis (BIA)? The BIA perceives the organization from the impact that is going to occur for an organization in the critical business processes are interrupted or tampered with. 2. What is the difference between the disaster recovery plan (DRP) and a business continuity plan (BCP)? The DRP helps recover the infrastructure necessary for normal business operation whereas the BCP helps keep the critical business processes running should a disaster occur. 3. What are the commands used in Windows 2012 to mount the NFS share on the Linux server. mount -o mtype=hard 4. Is creating redundancy for systems such as Active Directory or Web servers a part of the DRP or the BCP? Yes 5. Why use the mklink command? Because mklink creates a simbolic link between the remote drive ans the......

Words: 304 - Pages: 2

Premium Essay

Bcp Planning and Development

...Company Virtual Solutions Inc. Foundations of Business Continuity Management Table of Contents Executive Summary 3 Introduction 5 About Company Virtual Solutions 6 The Current Status of Business Continuity Planning 6 Historical Context 6 The New Plan 8 Using Recovery Planner 8 Configuration for TPT 9 Presentation 9 Compliance 10 Comprehensive Planning 10 Leadership Approval 12 The Plan Strategy 12 Team Structure 12 Figure 1: The Business Continuity Plan Team Organizational Chart 13 Emergency Management Team 13 Business Continuity Team 14 Business Unit Teams 15 Fly Out Teams 16 Fire Teams 16 The Four Phases of the Plan 16 Figure 2: The four phases of the Plan 16 Phase I - Appraisal 17 Phase II – Recovery Coordination 18 Phase III - Production 18 Phase IV – Site Restoration 19 Business Unit Plan Structure 20 Alternative Sites 21 Planning Refinement Recommendations 22 Risk Assessment 22 Business Impact Analysis 22 Emergency Response 23 Disaster Recovery 23 Testing and Restoration 24 Future State 25 Comprehensive Business Planning 25 ACP Workflow Planning 26 Awareness and Training 27 Maintaining Support 27 Projected Timeline 28 Figure 3: Projected Timeline 29 ......

Words: 6761 - Pages: 28

Free Essay

Contoh Laporan Drp

................................................. 3 2. Traceroute ............................................................................................................................... 16 3. Analisa Aset ............................................................................................................................ 18 4. Network Vulnerabilities Assessment .................................................................................. 25 5. Service Level Requirement .................................................................................................. 27 6. Bussiness Impact Analysis(BIA) .......................................................................................... 30 7. Disaster Recovery Plan (DRP) ............................................................................................ 32 i Pendahuluan Pada zaman yang modern seperti sekarang ini, di mana teknologi berkembang dengan pesat, tindak criminal pun juga turut meningkat. Semakin canggih suatu teknologi, semakin canggih juga cara yang dipakai oleh pelaku cyber criminal untuk merusak suatu teknologi tersebut. Dengan pikiran tersebut, kita sebagai seseorang atau kelompok yang sedang menjalankan suatu perusahaan yang berbasiskan IT, perlu menjaga dengan baik aset perusahaan kita, baik itu informasi, database, keuangan, hardware, dan lain sebagainya. Oleh karena itu dibuatkanlah suatu rencana penanggulangan bencana (Disaster Recovery Plan) yang di mana kita......

Words: 6026 - Pages: 25

Premium Essay

Drp Verses Bcp

... DRP versus BCP Disaster Recovery Plan The Disaster Recovery Plan or DRP is a test of a system back up procedures and practice. DRP is something that is rehearsed before a disaster happens in order to prepare for an event that might leave a company crippled or without a service. In the event something should happen to a company such as an internet connection going down, the crash of a server, or loss of power it is important to what to do in the event of an emergency. Loss of any one of these system could cause a company loss of revenue. DRP needed to be practiced, rehearsed many times periodically to assure that everyone involved knows what to do. Practice makes perfect, the more practice and rehearsal is done the easier and quicker it will be for someone to implement the steps needed to complete the recovery plan. It’s always best to practice these steps during non-peak hours. Typically DRP testing would be done overnight, on weekends, or holidays. It’s important to test the DRP system and process to ensure that the backup system is functioning properly, and the steps taken to get there are effective. Ideally this would all be automated, but not always possible. Step by step instructions and procedures are what make up the DRP, primarily its intended for key departments the most important being the IT department. These procedures and instructions are what will recover critical business systems in the event of a disaster. Making sure they are relevant, work properly,......

Words: 875 - Pages: 4

Premium Essay

Week 4 Discussion Bia, Bcp and Drp

...learn to create BIA, BCP, and DRP. You will learn what types of support services would be deployed when an incident occurs You will explore support services that would be required when an incident impacts the operational performance of an organization. I have had a situation likes this, I was working for a company in Texas and the transformer blew, due to a sever storm rolling through and the entire company went dark. So we were called in over night to have the DRP take place, thankfully they did have as hot site as well. So the BCP worked great, and with very little issues at all. Over all the BIA, DRP and the BCP worked smoothly and we were up in running by morning before anyone came into work that morning. Business Continuity Planning (BCP) identifies an organization's exposure to internal and external threats and synthesizes hard and soft assets to provide effective prevention and recovery for the organization, whilst maintaining competitive advantage and value system integrity. An impact analysis results in the differentiation between critical (urgent) and non-critical (non-urgent) organization functions/ activities. A function may be considered critical if the implications for stakeholders of damage to the organization resulting are regarded as unacceptable. Perceptions of the acceptability of disruption may be modified by the cost of establishing and maintaining appropriate business or technical recovery solutions. Disaster recovery plan (DRP) is the......

Words: 303 - Pages: 2

Premium Essay

Nt2670 Project Part 1 Develop a Drp

...have two separate classes of Web applications, those serving internal users and those serving external users, it is very important to place those applications on different servers. By doing this reduces the risk of malicious users penetrating the external server to gain access to sensitive internal information. You should also use a separate development server for testing and debugging apps. Possible Disaster Recovery Plan The first four steps should happen from hour 0 to hour 3. You should be declaring a disaster or not by hour 4, from hours 4 to 8 you should have done steps 5 to 10. Hours 24 to 35 complete the last 3 steps. Above is my possible disaster recovery plan to recommend to management. With my DRP above, the strength lies in the detail of it. My DRP gives you a step by step on how to go about recovery from a disaster. Some possible challenges that I can anticipate with my plan is the fact that I have never been in a disaster. Without being in a disaster and successfully recovering from it, you lack the experience. This can come into play with noticing a disaster, implementing your plan, staying calm, etc. A way to help mitigate this is to have dry runs, and drills of a disaster so you can have a basic understanding on how it might happen. Resources FTP Configuration on a Firewall. (2006, March 21). Retrieved February 21, 2016, from Laki, S. (2007, November 22). IIS7 Security Improvements. Retrieved February 21, 2016,......

Words: 769 - Pages: 4

Free Essay

Caso Bcp

...manual DE CASOS PORTUGUESES CASO Millennium bcp Caso Elaborado por: PEDRO DIONíSIO, Co-autor do Mercator XXI, professor de Marketing na Escola de Gestão do ISCTE Agradecemos a colaboração de Paulo Fidalgo, Director de Comunicação e Relações Institucionais, e de Gonçalo Moreira, Gestor de Marca. Este caso foi elaborado para fins pedagógicos e alguns dados podem não corresponder exactamente à realidade. MANUAL DE CASOS PORTUGUESES CASO Millennium bcp 2 CASO MILLENNIUM BCP – A REFUNDAÇÃO DE UMA MARCA Em Setembro de 2003, o Conselho de Administração do Grupo BCP decidiu que o processo de mudança de marca de BCP para Millennium bcp tivesse lugar a 23 de Outubro. A nova marca resultou da necessidade do aproveitamento de sinergias e de criação de uma visão do grupo, que estava disperso por dezenas de marcas de várias redes e produtos Após esta decisão, a Direcção de Comunicação e Relações Institucionais ficou com a missão de apresentar no prazo de uma semana o plano de implementação desta decisão. Após um diagnóstico inicial que aflorou a complexidade de implementação de milhares de procedimentos e aplicações destacaram-se as seguintes alternativas: • desenvolver uma estratégia de implementação através de um “big bang” total com alteração simultânea de todos os procedimentos e aplicações; • • desenvolver uma estratégia de evolução gradualista; desenvolver uma estratégia de “big bang” parcelar com alteração, por blocos, dos procedimentos e aplicações...

Words: 2852 - Pages: 12