Project Planning: Parameters of project planning and resources to be utilized are identified. 2. Risk Analysis and Review: The internal and external threats, to which an organization is exposed to, are identified especially risks related to the geographic location. 3. Business Impact Analysis: The critical operations of the business unit are evaluated and resources that are needed to operate them are identified. 4. Recovery Strategy: Temporary recovery guidelines are created for the business units that are exposed to the period between a predictable disaster and ready for normal operations. Alternative recovery strategies are also planned and important data and information of the business units are copied and stored in a safe location. 5. Plan development: Right people to conduct the recovery operation are identified and methods to notify these people are established. Methods to evaluate the operational impact and recovery activation are also determined. Steps to minimize the risks and the restoration of the system to normal after attack are also created. A Business Continuity Plan is the milestone of this phase. 6. Training: The employees that were identified to be involved in the recovery process are made to understand the BCP. 7. Testing: A fake situation is created to test the BCP and evaluate it to ensure its working. 8. Maintenance: The plan is updated on a frequent basis with change in business. (Heng, 2004, p. 2). Part 3 A Disaster Recovery Planning is a planning that results in a document called the Disaster Recover Plan which “explores how a network recovers from a disaster that could either damage its data or hinder and stop its functioning. An organization’s financial auditors need this document as a company’s...
A large corporation is supposed to have a large volume of data and information that needs to be protected from any kind of theft and any kind of loss due to natural disasters. This essay follows and discusses the ways such corporation are using to increase their network security. A large corporations should implement device security: physical and logical, that are described in the essay.
Physical device security implies the placing of a copy of the original device in a location where it is safe from malicious attackers. However, logical security protects the device from non-physical attacks.
This essay also refers to some systems, that are used to establish network security and plan it's proper work. Business Continuity Planning (BCP) is discussed, that is a planning that helps to identify the internal and external threats an organization is exposed to. A Disaster Recovery Planning explores how a network recovers from a disaster that could stop its functioning. An Acceptable Use Policy (AUP), that is mentioned in the essay is an important policy defined for a network, it defines what the acceptable usage of organizational resources is. The policy defines things, that are described in details, such as: sharing of passwords among users, installation of applications, copying data, levels of privacy on use of organization’s resources and many others. The last topic that the researcher discusses is social engineering, that is a way in which human behavior is manipulated in order to acquire a desired objective, such as hacker attacks.