This assignment consists of two (2) parts: a written paper and a PowerPoint presentation.
In recent years, organizations have witnessed the impact of having effective and non-effective business continuity plans and disaster recovery plans. In todays environment, with significant potential natural disasters, terrorist threats, and other man-made threats, it is critical that organizations develop effective business continuity plans and disaster recovery plans. Select an organization that you are familiar with, such as where you currently or previously have worked, contact a local organization, or search on the Internet for the needed detail of an organization you are interested in. Prepare a disaster recovery plan policy for that organization.
Part 1: Written Paper: Write a six to eight (6-8) page paper in which you:
a. Provide an overview of the organization that will be delivered to senior management, defining the business goals and objectives and the size, layout, and structure of the organization.
b. Include a diagram of the organizations network architecture and the proposed network architecture of an alternate computing facility in the event of a disaster (or the actual network architecture of the alternate computing facility if one already exists) through the use of graphical tools in Microsoft Word or Visio, or an open source alternative such as Dia. Note: The graphically depicted solution is not included in the required page length.
c. Develop the DRP Policy, including:
i. Disaster declaration
ii. Assessment of security
iii. Potential disaster scenarios and methods of dealing with the disaster
iv. Disaster recovery procedures
d. Develop an Incident Response Team (IRT) charter, which includes the following sections:
i. Executive summary
ii. Mission statement
iii. Incident declaration
iv. Organizational structure
v. Roles and responsibilities
vi. Information flow and methods of communication
vii. Methods and services provided by the IRT
viii. Authority and reporting procedures
Part 2: PowerPoint Presentation
Create a twelve to fourteen (12-14) slide presentation that will be presented to the agencys management, in which you:
a. Summarize the elements of the DRP Policy and IRT Charter, covering the main elements from Steps 3 and 4 above.
b. Include an introduction and conclusion slide. The specific course learning outcomes associated with this assignment are:
Describe the different ISS policies associated with risk management. Compare and contrast the different ISS policies associated with incident response teams (IRT). Use technology and information resources to research issues in security strategy and policy formation. Write clearly and concisely about Information Systems Security Policy topics using proper writing mechanics and technical style conventions.