CHF18.00
Download est disponible immédiatement
If you have a business or a nonprofit organization, or if
you're the one responsible for information systems at such an
operation, you know that disaster recovery planning is pretty
vital. But it's easy to put it off. After all, where do you
start?
IT Disaster Recovery Planning For Dummies shows you how
to get started by creating a safety net while you work out the
details of your major plan. The right plan will get your business
back on track quickly, whether you're hit by a tornado or a
disgruntled employee with super hacking powers. Here's how to
assess the situation, develop both short-term and long-term plans,
and keep your plans updated.
This easy-to-understand guide will help you
Prepare your systems, processes, and people for an organized
response to disaster when it strikes
Identify critical IT systems and develop a long-range
strategy
Select and train your disaster recovery team
Conduct a Business Impact Analysis
Determine risks to your business from natural or human-made
causes
Get management support
Create appropriate plan documents
Test your plan
Some disasters get coverage on CNN, and some just create
headaches for the affected organization. With IT Disaster
Recovery Planning For Dummies, you'll be prepared for
anything from hackers to hurricanes!
Auteur
Peter H. Gregory, CISA, CISSP, is the author of fifteen
books on security and technology, including Solaris Security
(Prentice Hall), Computer Viruses For Dummies (Wiley),
Blocking Spam and Spyware For Dummies (Wiley), and
Securing the Vista Environment (O'Reilly).
Peter is a security strategist at a publicly-traded financial
management software company located in Redmond, Washington. Prior
to taking this position, he held tactical and strategic security
positions in large wireless telecommunications organizations. He
has also held development and operations positions in casino
management systems, banking, government, non-profit organizations,
and academia since the late 1970s.
He's on the board of advisors for the NSA-certified
Certificate program in Information Assurance & Cybersecurity at
the University of Washington, and he's a member of the board
of directors of the Evergreen State Chapter of InfraGard.
Résumé
If you have a business or a nonprofit organization, or if you're the one responsible for information systems at such an operation, you know that disaster recovery planning is pretty vital. But it's easy to put it off. After all, where do you start?
IT Disaster Recovery Planning For Dummies shows you how to get started by creating a safety net while you work out the details of your major plan. The right plan will get your business back on track quickly, whether you're hit by a tornado or a disgruntled employee with super hacking powers. Here's how to assess the situation, develop both short-term and long-term plans, and keep your plans updated.
This easy-to-understand guide will help you
Contenu
Foreword xix
Introduction 1
About This Book 1
How This Book Is Organized 2
Part I: Getting Started with Disaster Recovery 2
Part II: Building Technology Recovery Plans 2
Part III: Managing Recovery Plans 2
Part IV: The Part of Tens 3
What This Book Is and What It Isn't 3
Assumptions about Disasters 3
Icons Used in This Book 4
Where to Go from Here 4
Write to Us! 5
Part I: Getting Started with Disaster Recovery 7
Chapter 1: Understanding Disaster Recovery 9
Disaster Recovery Needs and Benefits 9
The effects of disasters 10
Minor disasters occur more frequently 11
Recovery isn't accidental 12
Recovery required by regulation 12
The benefits of disaster recovery planning 13
Beginning a Disaster Recovery Plan 13
Starting with an interim plan 14
Beginning the full DR project 15
Managing the DR Project 18
Conducting a Business Impact Analysis 18
Developing recovery procedures 22
Understanding the Entire DR Lifecycle 25
Changes should include DR reviews 26
Periodic review and testing 26
Training response teams 26
Chapter 2: Bootstrapping the DR Plan Effort 29
Starting at Square One 30
How disaster may affect your organization 30
Understanding the role of prevention 31
Understanding the role of planning 31
Resources to Begin Planning 32
Emergency Operations Planning 33
Preparing an Interim DR Plan 34
Staffing your interim DR plan team 35
Looking at an interim DR plan overview 35
Building the Interim Plan 36
Step 1 Build the Emergency Response Team 37
Step 2 Define the procedure for declaring a disaster 37
Step 3 Invoke the interim DR plan 39
Step 4 Maintain communications during a disaster 39
Step 5 Identify basic recovery plans 41
Step 6 Develop processing alternatives 42
Step 7 Enact preventive measures 44
Step 8 Document the interim DR plan 46
Step 9 Train ERT members 48
Testing Interim DR Plans 48
Chapter 3: Developing and Using a Business Impact Analysis 51
Understanding the Purpose of a BIA 52
Scoping the Effort 53
Conducting a BIA: Taking a Common Approach 54
Gathering information through interviews 55
Using consistent forms and worksheets 56
Capturing Data for the BIA 58
Business processes 59
Information systems 60
Assets 61
Personnel 62
Suppliers 62
Statements of impact 62
Criticality assessment 63
Maximum Tolerable Downtime 64
Recovery Time Objective 64
Recovery Point Objective 65
Introducing Threat Modeling and Risk Analysis 66
Disaster scenarios 67
Identifying potential disasters in your region 68
Performing Threat Modeling and Risk Analysis 68
Identifying Critical Components 69
Processes and systems 70
Suppliers 71
Personnel 71
Determining the Maximum Tolerable Downtime 72
Calculating the Recovery Time Objective 72
Calculating the Recovery Point Objective 73
Part II: Building Technology Recovery Plans 75
Chapter 4: Mapping Business Functions to Infrastructure 77
Finding and Using Inventories 78
Using High-Level Architectures 80
Data flow and data storage diagrams 80
Infrastructure diagrams and schematics 84
Identifying Dependencies 90
Inter-system dependencies 91
External dependencies 95
Chapter 5: Planning User Recovery 97 Managing and Recovering End-User Computin...