This assignment consists of two (2) parts: a written paper and a PowerPoint presentation. You must submit both parts as separate files for the completion of this assignment. Label each file name according to the section of the assignment it is written for. Additionally, you may create and / or assume all necessary assumptions needed for the completion of this assignment.
In recent years, organizations have witnessed the impact of having effective and non-effective business continuity plans and disaster recovery plans. In today's environment, with significant potential natural disasters, terrorist threats, and other man-made threats, it is critical that organizations develop effective business continuity plans and disaster recovery plans. Select an organization that you are familiar with, such as where you currently or previously have worked, contact a local organization, or search on the Internet for the needed detail of an organization you are interested in. Prepare a disaster recovery plan policy for that organization.
Part 1: Written Paper
1. Write a six to eight (6-8) page paper in which you:
a. Provide an overview of the organization that will be delivered to senior management, defining the business goals and objectives and the size, layout, and structure of the organization.
b. Include a diagram of the organization's network architecture and the proposed network architecture of an alternate computing facility in the event of a disaster (or the actual network architecture of the alternate computing facility if one already exists) through the use of
graphical tools in Microsoft Word or Visio, or an open source alternative such as Dia.
Note:
The graphically depicted solution is not included in the required page length.
c. Develop the DRP Policy, including:
i. Disaster declaration
ii. Assessment of security
iii. Potential disaster scenarios and methods of dealing with the disaster
iv. Disaster recovery procedures
d. Develop an Incident Response Team (IRT) charter, which includes the following sections:
i. Executive summary
ii. Mission statement
iii. Incident declaration
iv. Organizational structure
v. Roles and responsibilities
vi. Information flow and methods of communication
vii. Methods and services provided by the IRT
viii. Authority and reporting procedures
Part 2: PowerPoint Presentation
Use Microsoft PowerPoint to:
2. Create a twelve to fourteen (12-14) slide presentation that will be presented to the agency's
management, in which you:
a. Summarize the elements of the DRP Policy and IRT Charter, covering the main elements
from Steps 3 and 4 above.
b. Include an introduction and conclusion slide.
The specific course learning outcomes associated with this assignment are:
? Describe the different ISS policies associated with risk management.
? Compare and contrast the different ISS policies associated with incident response teams (IRT).
? Use technology and information resources to research issues in security strategy and policy formation.
? Write clearly and concisely about Information Systems Security Policy topics using proper writing mechanics and technical style conventions.