Term
|
Definition
| Ensuring the business can continue in an emergency |
|
|
Term
|
Definition
| Recover as quickly as possible |
|
|
Term
|
Definition
-Scope and Plan Initiation
-Business Impact Analysis (BIA)
-Business Continuity Plan development |
|
|
Term
|
Definition
-DRP planning process
-Testing the DRP
-Disaster Recovery Procedures |
|
|
Term
| Key difference between BCP and DRP |
|
Definition
| DRP addresses the procedures to be followed during and after the loss |
|
|
Term
| Business Continuity Planning |
|
Definition
-Created to prevent interruptions to normal business activity
-Protect critical business process from man made and natural disasters
-Minimize the effect and all resumption of business process |
|
|
Term
| Continuity Disruptive Events |
|
Definition
|
|
Term
|
Definition
-Fires, Explosions, hazardous material spills of environmental toxins
-Earthquakes, storms, floods, and fires from nature
-Power outages and utility failures |
|
|
Term
|
Definition
-Bombings Sabotage
-Strikes, job actions
-Employee or Operator unavailability due to emergency evacuation
-Communications infrastructure failures |
|
|
Term
|
Definition
-Scope and Plan Initiation
-Business Impact Analysis
-Business Continuity Plan Development
-Plan Approved and Implementation |
|
|
Term
| Scope and Plan Initiation |
|
Definition
Marks the beginning of BCP process
-Creating the scope
-Creating detailed account of work required
-Listing the resources to be used
-Defining management practices |
|
|
Term
|
Definition
| Used to help business understand the impact of a disruptive event, 2nd element of BCP |
|
|
Term
| Business Continuity Plan Development |
|
Definition
| Using information from the BIA to develop the actual BCP Plan, includes testing; 3rd part of BCP |
|
|
Term
| Business Continuity Plan Development |
|
Definition
| Using information from the BIA to develop the actual BCP Plan, includes testing; 3rd part of BCP |
|
|
Term
| Plan Approval and Implementation |
|
Definition
| This involves getting final management approval, creating awareness, updating as needed |
|
|
Term
|
Definition
Responsible to create, implement and test the plan. Made up of:
-Senior Management
-Business Units
-Information Systems
-Security Administrator |
|
|
Term
|
Definition
-Has ultimate responsibility for all phases of the plan
-Senior Management support is critical |
|
|
Term
|
Definition
| Stock Holders may hold Senior Management responsible as well as the Board of Directors if a disruptive event causes losses that could have been prevented with base standards of care |
|
|
Term
| Executive Management Role |
|
Definition
| Initiates project, gives final approval, gives ongoing support |
|
|
Term
| Senior Business Unit Management Role |
|
Definition
| Identifies and prioritizes time critical systems |
|
|
Term
|
Definition
| Directs the planning, implementation and test processes |
|
|
Term
| Functional Business Units |
|
Definition
| Participate in implementation and testing |
|
|
Term
| Business Impact Assessment |
|
Definition
| Helps to document what impact a disruptive event will have on the business |
|
|
Term
|
Definition
-Criticality Prioritization – every business unit process is identified and prioritized
-Downtime Estimation – Determine Maximum Tolerable Downtime (MTD), often much shorter than expected
-Resource Requirements – resource requirements for critical processes |
|
|
Term
|
Definition
-Gathering assessment material
-Perform the assessment
-Analyze the compiled information
-Document the results |
|
|
Term
| Quantitative Loss Criteria |
|
Definition
-Incurring financial loss from loss of revenue or capital expenditure
-Additional operational expenses incurred due to disruptive event
-Incurring financial loss from resolution of violated contract
-Incurring financial loss from regulatory compliance |
|
|
Term
| Qualitative Loss Criteria |
|
Definition
-Loss of competitive edge
-Loss of public confidence
-Incurring public embarrassment |
|
|
Term
| Elements of Continuity Strategy |
|
Definition
-Computing – needs to preserve hardware and software, communication lines, applications and data
-Facilities – needs to address use of buildings
-People – defined roles in implementing the strategy
-Supplies and equipment – paper, forms, HVAC, security equipment |
|
|
Term
| Disaster Recovery Planning |
|
Definition
-Comprehensive statement of actions to be taken before, during and after a disruptive event causes loss of Information Systems.
-Primary objective is to provide an alternate site and return to primary site in a minimal time frame |
|
|
Term
|
Definition
| Helps to identify the most critical business functions |
|
|
Term
| Elements of Continuity Strategy |
|
Definition
-Computing – needs to preserve hardware and software, communication lines, applications and data
-Facilities – needs to address use of buildings
-People – defined roles in implementing the strategy
-Supplies and equipment – paper, forms, HVAC, security equipment |
|
|
Term
|
Definition
-Provide an organized way to make decisions if a disruptive event occurs
-Reduce confusion and enhance the ability to deal with crisis
-Planning and development must occur before the disaster
-Focus on the steps needed to protect the business |
|
|
Term
|
Definition
-Protect the company from major computer services failure
-Minimize the risk from delays in providing services
-Guarantee reliability of standby systems through testing
-Minimize decision making required by personnel during a disaster |
|
|
Term
| Data Processing Continuity Planning |
|
Definition
| Planning for disaster and creating plans to cope with it |
|
|
Term
| Data Recovery plan Maintenance |
|
Definition
|
|
Term
| Data Processing Continuity Planning (DPCP) |
|
Definition
-Mutual Aid Agreements – reciprocal agreement
-Arrangement with another company with similar hardware or software configurations
-Agreement by both parties, assumes sufficient capacity in time of need (Big Assumption)
-Should only be considered if no other options, or perfect partner (i.e. subsidiary) |
|
|
Term
|
Definition
-Very little or no cost
-If processing requirements are similar it may be workable |
|
|
Term
|
Definition
-Highly unlikely the capacity will exist
-Severely limits responsiveness and support |
|
|
Term
|
Definition
-Third party commercial services provide alternate backup and processing facilities
-Most common of the implementations. |
|
|
Term
| Subscription Service Types |
|
Definition
-Hot Site
-Warm Site
-Cold Site |
|
|
Term
|
Definition
-Requires:
-Fully configured facility with electrical power, Heating Ventilation and Air Conditioning (HVAC)
*File and print servers and workstations
*Applications are installed on the servers
*Workstations are kept up to date
-Allows walk in with a data restoration and begin full operations in short time
-Remote journaling – mirroring transaction processing over high-speed connections may eliminate back up time. |
|
|
Term
|
Definition
-24/7 availability
-Exclusivity of use
-Immediately available
-Supports short and long term outage |
|
|
Term
| Disadvantages of a Hot site |
|
Definition
-Most expensive
-Requires constant maintenance of hardware, software, data and applications
-Adds administrative overhead and can be a strain on resources
-Service provider may oversell processing capabilities
-Security of hot site, primary site security must be duplicated |
|
|
Term
|
Definition
Cross between hot and cold sites
-Facility with electrical power, Heating Ventilation and Air Conditioning (HVAC)
-File and print servers may not have workstations, software may not be installed
-External communications should be installed |
|
|
Term
| Advantages of a Warm Site |
|
Definition
-Cost – much less than hot
-Location – since less control required sites can be more flexible
-Resources – resource drain is much lower than hot site |
|
|
Term
| Disadvantages of a Warm Site |
|
Definition
| Difference in time required to be up and running |
|
|
Term
|
Definition
Least ready of all three, but most common
-Facility with electrical power, Heating Ventilation and Air Conditioning (HVAC)
-Ready for equipment but no computer hardware on site.
-Communications links may or may not be ready
-Not considered adequate because of length of time for recovery |
|
|
Term
| Advantages of a Cold Site |
|
Definition
|
|
Term
| Disadvantages of a Cold Site |
|
Definition
|
|
Term
|
Definition
-Contract with to provide all alternate backup processing.
-Advantage – quick response
-Disadvantage – cost, resource contention during disaster |
|
|
Term
|
Definition
-Processing spread over multiple centers, creating distributed redundancy. Can be in-house or through reciprocal agreement.
-Cost is contained, but same issues as Mutual Aid Agreements (reciprocal agreement) |
|
|
Term
| Rolling mobile backup sites |
|
Definition
| Vendor provides mobile services, mobile homes or flatbed trucks with power and HVAC sufficient for alternate processing. Considered Cold Site variation. |
|
|
Term
|
Definition
| Transfer of backup date to off-site location. Batch process through communication lines |
|
|
Term
|
Definition
| Parallel processing of transactions at remote site. Live data is posted as it occurs |
|
|
Term
|
Definition
| Live processing of remote journaling but creates more redundancy by duplicating the database sets |
|
|
Term
| Disaster Recovery Plan Maintenance |
|
Definition
-Disaster Recovery Plans often get out of date
-Changes in technical infrastructure and company structure
-Plan maintenance must be employed from the outset
-Audit procedures should report regularly on the plan
-Version control on all plan copies |
|
|
Term
| Testing of the Disaster Recovery Plan |
|
Definition
-Testing must be conducted in an orderly, standardized fashion, executed on a regular basis
-No demonstrated recovery ability exists until it is tested
-Testing verifies the accuracy of the recovery procedures
-Testing prepares and trains personnel to execute during emergency
-Testing verifies the processing capability of the alternate backup site |
|
|
Term
| Test document should include |
|
Definition
-Test scenarios
-Reasons for the test
-Objectives of the test
-Type of tests
-Testing schedule
-Duration of the test
-Specific test steps
-Who will be the participants
-The task assignments of the test
-Resources and services required |
|
|
Term
| Disaster Recovery Plan Types |
|
Definition
-Checklist
-Table Top/Structured walk through
-Simulation/Walk-Through
-Functional drill/Parallel Test
-Full Scale/Full-interruption |
|
|
Term
|
Definition
| Preliminary step to real test, distribute plan for review by business unit managers |
|
|
Term
| Table top/Structured Walk Through |
|
Definition
| Business Unit Managers walk through the test plan. Each step is walked through and marked as performed. |
|
|
Term
| Simulation Test/Walk through |
|
Definition
-All personnel with DR responsibilities will meet and go through a practice session
-Enacts recovery procedures but no alternate processing |
|
|
Term
| Functional Drill/Parallel Test |
|
Definition
| Full test of recovery plan using all personnel. Primary processing does not stop. Ensures processing will run at alternate site. Most common type of recovery plan testing. |
|
|
Term
| Full Scale/Full-interruption |
|
Definition
-Disaster is replicated to the point of ceasing normal operations. Plan is implemented as if it were a disaster.
-Scary and can cause its own disaster, but best way to test completely |
|
|
Term
| Primary elements of the disaster recovery process |
|
Definition
-Recovery team
-Salvage Team
-Normal Operations Team
-Other Recovery Issues |
|
|
Term
|
Definition
-Implement the recovery procedures in a disaster
-Get critical functions operating at backup site
-Retrieval of materials from off-site storage, backups, workstations
-Installs critical systems and applications |
|
|
Term
|
Definition
-Separate from recovery team
-Returns the primary site to normal operating conditions
-Safely clean, repair, salvage the primary processing facility |
|
|
Term
|
Definition
-Task of Recovery Team, or another separate team
-Returning production from the alternate site to the primary site
-Disaster is not over until all operations have returned to their normal location and function. |
|
|
Term
|
Definition
-Interfacing with external groups
*Municipal Emergency Groups, fire, police, ambulances, EMS.
*Escalation and interaction should be included in the plan
-Employee Relations
*Inherent responsibility to employees and their families
*Salaries must continue
*Insurance must be adequate
-Fraud and crime
*Fraudsters try to capitalize on the disaster
*Vandalism and looting may occur
-Financial Disbursement
*Expense disbursement
*Signed and authorized checks will be needed |
|
|
Term
| Maximum Tolerable Downtime (MTD) |
|
Definition
| It is maximum delay businesses can tolerate and still remain viable |
|
|
Term
| Under "Named Perils" form of Property Insurance |
|
Definition
| Burden of proof that particular loss is covered is on Insured |
|
|
Term
| System reliability is increased by |
|
Definition
| A higher MTBF and a lower MTTR |
|
|
Term
| Valuable paper insurance coverage does not cover damage to |
|
Definition
|
|
Term
| A business continuity plan is an example of which of the following |
|
Definition
|
|
Term
| Under "All Risk" form of Property Insurance |
|
Definition
| Burden of proof that particular loss is not covered is on Insurer |
|
|
Term
| A contingency plan should address |
|
Definition
|
|
Term
| Business Continuity and Disaster Recovery Planning (Primarily) addresses |
|
Definition
| Availability of the CIA triad |
|
|
