If you have a business or a nonprofit organization, or if you re the one responsible for information systems at such an operation, you know that disaster recovery planning is pretty vital. But it s easy to put it off.

Informationen zum Autor Peter H. Gregory, CISA, CISSP, is the author of fifteen books on security and technology, including Solaris Security (Prentice Hall), Computer Viruses For Dummies (Wiley), Blocking Spam and Spyware For Dummies (Wiley), and Securing the Vista Environment (O'Reilly). Peter is a security strategist at a publicly-traded financial management software company located in Redmond, Washington. Prior to taking this position, he held tactical and strategic security positions in large wireless telecommunications organizations. He has also held development and operations positions in casino management systems, banking, government, non-profit organizations, and academia since the late 1970s. He's on the board of advisors for the NSA-certified Certificate program in Information Assurance & Cybersecurity at the University of Washington, and he's a member of the board of directors of the Evergreen State Chapter of InfraGard. Klappentext Create a safety net while you work out your major planIdentify critical IT systems, develop a long-range strategy, and train your peopleSome disasters get coverage on CNN -- some just create headaches for the affected organization. The right plan will get your business back on track quickly, whether you're hit by a tornado or a disgruntled employee with super hacking powers. Here's how to assess the situation, develop both short-term and long-term plans, and keep them updated.Discover how to:Select your disaster recovery teamConduct a Business Impact AnalysisDetermine risksGet management supportCreate appropriate plan documentsTest your plan Zusammenfassung If you have a business or a nonprofit organization, or if you're the one responsible for information systems at such an operation, you know that disaster recovery planning is pretty vital. But it's easy to put it off. Inhaltsverzeichnis Foreword xix Introduction 1 About This Book 1 How This Book Is Organized 2 Part I: Getting Started with Disaster Recovery 2 Part II: Building Technology Recovery Plans 2 Part III: Managing Recovery Plans 2 Part IV: The Part of Tens 3 What This Book Is - and What It Isn't 3 Assumptions about Disasters 3 Icons Used in This Book 4 Where to Go from Here 4 Write to Us! 5 Part I: Getting Started with Disaster Recovery 7 Chapter 1: Understanding Disaster Recovery 9 Disaster Recovery Needs and Benefits 9 The effects of disasters 10 Minor disasters occur more frequently 11 Recovery isn't accidental 12 Recovery required by regulation 12 The benefits of disaster recovery planning 13 Beginning a Disaster Recovery Plan 13 Starting with an interim plan 14 Beginning the full DR project 15 Managing the DR Project 18 Conducting a Business Impact Analysis 18 Developing recovery procedures 22 Understanding the Entire DR Lifecycle 25 Changes should include DR reviews 26 Periodic review and testing 26 Training response teams 26 Chapter 2: Bootstrapping the DR Plan Effort 29 Starting at Square One 30 How disaster may affect your organization 30 Understanding the role of prevention 31 Understanding the role of planning 31 Resources to Begin Planning 32 Emergency Operations Planning 33 Preparing an Interim DR Plan 34 Staffing your interim DR plan team 35 Looking at an interim DR plan overview 35 Building the Interim Plan 36 Step 1 - Build the Emergency Response Team 37 Step 2 - Define the procedure for declaring a disaster 37 Step 3 - Invoke the interim DR plan 39 Step 4 - Maintain communications during a disaster 39 Step 5 - Identify basic recovery plans 41 Step 6 -...

Autorentext

Peter H. Gregory, CISA, CISSP, is the author of fifteen books on security and technology, including Solaris Security (Prentice Hall), Computer Viruses For Dummies (Wiley), Blocking Spam and Spyware For Dummies (Wiley), and Securing the Vista Environment (O'Reilly).
Peter is a security strategist at a publicly-traded financial management software company located in Redmond, Washington. Prior to taking this position, he held tactical and strategic security positions in large wireless telecommunications organizations. He has also held development and operations positions in casino management systems, banking, government, non-profit organizations, and academia since the late 1970s.
He's on the board of advisors for the NSA-certified Certificate program in Information Assurance & Cybersecurity at the University of Washington, and he's a member of the board of directors of the Evergreen State Chapter of InfraGard.

Klappentext

Create a safety net while you work out your major plan Identify critical IT systems, develop a long-range strategy, and train your people Some disasters get coverage on CNN -- some just create headaches for the affected organization. The right plan will get your business back on track quickly, whether you're hit by a tornado or a disgruntled employee with super hacking powers. Here's how to assess the situation, develop both short-term and long-term plans, and keep them updated. Discover how to: Select your disaster recovery team Conduct a Business Impact Analysis Determine risks Get management support Create appropriate plan documents Test your plan

Zusammenfassung
If you have a business or a nonprofit organization, or if you're the one responsible for information systems at such an operation, you know that disaster recovery planning is pretty vital. But it's easy to put it off.

Inhalt

Foreword xix

Introduction 1

About This Book 1

How This Book Is Organized 2

Part I: Getting Started with Disaster Recovery 2

Part II: Building Technology Recovery Plans 2

Part III: Managing Recovery Plans 2

Part IV: The Part of Tens 3

What This Book Is - and What It Isn't 3

Assumptions about Disasters 3

Icons Used in This Book 4

Where to Go from Here 4

Write to Us! 5

Part I: Getting Started with Disaster Recovery 7

Chapter 1: Understanding Disaster Recovery 9

Disaster Recovery Needs and Benefits 9

The effects of disasters 10

Minor disasters occur more frequently 11

Recovery isn't accidental 12

Recovery required by regulation 12

The benefits of disaster recovery planning 13

Beginning a Disaster Recovery Plan 13

Starting with an interim plan 14

Beginning the full DR project 15

Managing the DR Project 18

Conducting a Business Impact Analysis 18

Developing recovery procedures 22

Understanding the Entire DR Lifecycle 25

Changes should include DR reviews 26

Periodic review and testing 26

Training response teams 26

Chapter 2: Bootstrapping the DR Plan Effort 29

Starting at Square One 30

How disaster may affect your organization 30

Understanding the role of prevention 31

Understanding the role of planning 31

Resources to Begin Planning 32

Emergency Operations Planning 33

Preparing an Interim DR Plan 34

Staffing your interim DR plan team 35

Looking at an interim DR plan overview 35

Building the Interim Plan 36

Step 1 - Build the Emergency Response Team 37

Step 2 - Define the procedure for declaring a disaster 37

Step 3 - Invoke the interim DR plan 39

Step 4 - Maintain communications during a disaster 39

Step 5 - Identify basic recovery plans 41

Step 6 - Develop processing alternatives 42

Step 7 - Enact preventive measures 44

Step 8 - Document the interim DR plan 46

Step 9 - Train ERT members 48

Testing Interim DR Plans 48

Chapter 3: Developing and Using a Business Impact Analysis 51

Understanding the Purpose of a BIA 52

Scoping the Effort 53

Conducting a BIA: Taking a Common Approach 54

Gathering information through interviews 55

Using consistent forms and worksheets 56

Capturing Data for the BIA 58

Business processes 59

Information systems 60…