SlideShare a Scribd company logo

You have been hired as a consultant to design BCP for SanGrafix, a v.docx

Download as DOCX, PDF
S
shantayjewison

You have been hired as a consultant to design BCP for SanGrafix, a video and PC game design company. SanGrafix's newest game has become a hot seller, and the company anticipates rapid growth. It's moving into a new facility and will be installing a new network. Because competition is fierce in the game industry, SanGrafix wants to be fully secured, documented, and maintained while providing high availability, scalability, and performance. Based on your current technology and information security knowledge, for this project you will design a BCP based off of the company profile below: A. Primary location in San Francisco, CA B. Secondary location/hot site in Sunnyvale, CA C. Capable of supporting 220 users in these departments: Accounting and Payroll, 16; Research and Development, 48; Sales and Marketing, 40; Order Processing, Shipping, and Receiving, 36; secretarial and office management staff, 20; upper management (including the president, vice president, and general manager), 10; Customer Relations and Support, 30; Technology Support, 20. D. Full OC3 Internet connection First step is to issue a clear policy statement on the Business Continuity Plan. At a minimum, this statement should contain the following instructions: The organization should develop a comprehensive Business Continuity Plan. A formal risk assessment should be undertaken in order to determine the requirements for the Business Continuity Plan. The Business Continuity Plan should cover all essential and critical business activities. The Business Continuity Plan should be periodically tested in a simulated environment to ensure that it can be implemented in emergency situations and that the management and staff understand how it is to be executed. All staff must be made aware of the Business Continuity Plan and their own respective roles. The Business Continuity Plan is to be kept up to date to take into account changing circumstances. BELOW IS THE EXAMPLE Policy Statement 1. Agencies are required to develop, implement, test and maintain a Business Continuity Plan (BCP) for all Information Technology Resources (ITR) that deliver or support core systems and services on behalf of the Commonwealth of Massachusetts. For purposes of this policy, the BCP is the overall plan that facilitates sustaining critical operations while recovering from a disruption. BCP’s are required to include, at a minimum: Standard Incident Response Procedures: An information system-focused set of procedures to be used when an event occurs that is not part of the standard operation of a service and may or does cause disruption to or a reduction in the quality of services and Customer productivity. Disaster Recovery Plan (DRP): An information system-focused plan designed to restore operability of the target system, application, or computer facility infrastructure in the event of large scale disaster and/or other cataclysmic event. Continuity of Operations Plans (COOP): An information system-focused pla.

Education
1 of 4
You have been hired as a consultant to design BCP for SanGrafix, a video and PC game design company. SanGrafix's newest game has become a hot seller, and the company anticipates rapid growth. It's moving into a new facility and will be installing a new network. Because competition is fierce in the game industry, SanGrafix wants to be fully secured, documented, and maintained while providing high availability, scalability, and performance. Based on your current technology and information security knowledge, for this project you will design a BCP based off of the company profile below: A. Primary location in San Francisco, CA B. Secondary location/hot site in Sunnyvale, CA C. Capable of supporting 220 users in these departments: Accounting and Payroll, 16; Research and Development, 48; Sales and Marketing, 40; Order Processing, Shipping, and Receiving, 36; secretarial and office management staff, 20; upper management (including the president, vice president, and general manager), 10; Customer Relations and Support, 30; Technology Support, 20. D. Full OC3 Internet connection First step is to issue a clear policy statement on the Business Continuity Plan. At a minimum, this statement should contain the following instructions: The organization should develop a comprehensive Business Continuity Plan. A formal risk assessment should be undertaken in order to determine the requirements for the Business Continuity Plan. The Business Continuity Plan should cover all essential and critical business activities. The Business Continuity Plan should be periodically tested in a simulated environment to ensure that it can be implemented in emergency situations and that the management and staff understand how it is to be executed. All staff must be made aware of the Business Continuity Plan
and their own respective roles. The Business Continuity Plan is to be kept up to date to take into account changing circumstances. BELOW IS THE EXAMPLE Policy Statement 1. Agencies are required to develop, implement, test and maintain a Business Continuity Plan (BCP) for all Information Technology Resources (ITR) that deliver or support core systems and services on behalf of the Commonwealth of Massachusetts. For purposes of this policy, the BCP is the overall plan that facilitates sustaining critical operations while recovering from a disruption. BCP’s are required to include, at a minimum: Standard Incident Response Procedures: An information system- focused set of procedures to be used when an event occurs that is not part of the standard operation of a service and may or does cause disruption to or a reduction in the quality of services and Customer productivity. Disaster Recovery Plan (DRP): An information system-focused plan designed to restore operability of the target system, application, or computer facility infrastructure in the event of large scale disaster and/or other cataclysmic event. Continuity of Operations Plans (COOP): An information system-focused plan invoked under a DRP when access to the primary facility infrastructure is prevented for an extended period, requiring operations to be restored from an alternate site after an emergency. The COOP may be supported by multiple information system contingency plans to address recovery of impacted individual systems once the alternate facility has been established. The COOP only addresses information system disruptions that require relocation. (From NIST SP 800-34). 2. Agencies are required to conduct risk assessments to identify, estimate, and prioritize risks to organizational operations and conduct business impact analyses to identify all critical functions of the agency, entity or business unit and their supporting information systems. ITD’s Compliance Assurance
Office is available to assist and/or conduct such assessments.3. Agencies are required to articulate specific information, including the details necessary to effectively respond, manage, and recover from either an incident or a catastrophic event. Further, protecting data and confidential information should be integrated into the above referenced details.4. Agencies are required to ensure that all BCPs and supporting DRPs and COOPs are in alignment with and in support of any and all legal and regulatory requirements that the agency ITR’s are subject to.5. Agencies are required, at a minimum, to include the following documentation and procedures in their BCP and its supporting components: Scope / Objectives Risk Evaluation and Required Security Controls Business Impact Analysis Communications Procedures BCP Organization Structure Activation of plans Succession of Authority Procedures BCP Team Roles and Responsibilities Incident/Event Response Teams Emergency/DR Response Teams Primary and Alternate Contact Lists Damage Assessment Recovery Plans Critical System Recovery Prioritization of Recovery Interdependencies Resource requirements Security Controls COOP Mobilizing Alternate Locations / Resources Managing Alternate Locations / Resources Critical System Support Short term Long term
Local Regional Pandemic 6. Agencies are required to verify that critical third party vendors meet agency business continuity requirements during the contract negotiating process and prior to contract agreement and signature. Alternate third party vendors are required to be identified where appropriate. 7. Agencies are required to securely store copies of plans and supporting materials in a remote location; at a sufficient distance to escape any damage from a disaster at the agency’s main information processing facilities and be available (via remote connection, external e- mail location, etc.).8. Agencies are required to document, implement and annually test plans including the testing of all appropriate security provisions to minimize impact to systems or processes from the effects of major failures of IT Resources or disasters.9. Agencies are required to identify appropriate mechanisms to ensure that plans remain current and updated between annual tests and reviews accounting for: Change management implications New/Major upgrades of system implementations New policy adoption New contract implementations New threat/risk identification Staff/resource/responsibility changes 1. Agencies are required to publish plans and sufficiently train any and all individuals that are required or responsible for supporting the BCP NO PLAGIARISM APA FORMAT

Recommended

Business continuity planning and disaster recovery
Business continuity planning and disaster recoveryBusiness continuity planning and disaster recovery
Business continuity planning and disaster recoveryKrutiShah114
 
Bcm Roadmap
Bcm RoadmapBcm Roadmap
Bcm Roadmapbtrmuray
 
BCM Roadmap
BCM RoadmapBCM Roadmap
BCM Roadmapbtrmuray
 
Task 1.Complete the BIA table below and use it for the remai
Task 1.Complete the BIA table below and use it for the remaiTask 1.Complete the BIA table below and use it for the remai
Task 1.Complete the BIA table below and use it for the remaialehosickg3
 
Job description of information officer
Job description of information officerJob description of information officer
Job description of information officerAli Khan
 
Business Continuity Planning and Disaster Recovery Plannin.docx
Business Continuity Planning and Disaster Recovery Plannin.docxBusiness Continuity Planning and Disaster Recovery Plannin.docx
Business Continuity Planning and Disaster Recovery Plannin.docxfelicidaddinwoodie
 
IT infra, emerging technology and governance
IT infra, emerging technology and governance IT infra, emerging technology and governance
IT infra, emerging technology and governance Azra'ee Mamat
 
Sample audit plan
Sample audit planSample audit plan
Sample audit planMaher Manan
 

Recommended

Business continuity planning and disaster recovery
Business continuity planning and disaster recoveryBusiness continuity planning and disaster recovery
Business continuity planning and disaster recoveryKrutiShah114
 
Bcm Roadmap
Bcm RoadmapBcm Roadmap
Bcm Roadmapbtrmuray
 
BCM Roadmap
BCM RoadmapBCM Roadmap
BCM Roadmapbtrmuray
 
Task 1.Complete the BIA table below and use it for the remai
Task 1.Complete the BIA table below and use it for the remaiTask 1.Complete the BIA table below and use it for the remai
Task 1.Complete the BIA table below and use it for the remaialehosickg3
 
Job description of information officer
Job description of information officerJob description of information officer
Job description of information officerAli Khan
 
Business Continuity Planning and Disaster Recovery Plannin.docx
Business Continuity Planning and Disaster Recovery Plannin.docxBusiness Continuity Planning and Disaster Recovery Plannin.docx
Business Continuity Planning and Disaster Recovery Plannin.docxfelicidaddinwoodie
 
IT infra, emerging technology and governance
IT infra, emerging technology and governance IT infra, emerging technology and governance
IT infra, emerging technology and governance Azra'ee Mamat
 
Sample audit plan
Sample audit planSample audit plan
Sample audit planMaher Manan
 
Applying Lean for information security operations centre
Applying Lean for information security operations centreApplying Lean for information security operations centre
Applying Lean for information security operations centreNaushad Rajani. - CISA, CISSP, CCSP, PMP, DCPP (Privacy)
 
During week 6 we develop the theory and application of capital bud.docx
During week 6 we develop the theory and application of capital bud.docxDuring week 6 we develop the theory and application of capital bud.docx
During week 6 we develop the theory and application of capital bud.docxjacksnathalie
 
Business continuity & disaster recovery
Business continuity & disaster recoveryBusiness continuity & disaster recovery
Business continuity & disaster recoveryGeorge Coutsoumbidis
 
Information Technology Disaster Planning
Information Technology Disaster PlanningInformation Technology Disaster Planning
Information Technology Disaster Planningguest340570
 
(CDC IT Security Staff BCP Policy) ([CSIA 413,).docx
(CDC IT Security Staff BCP Policy) ([CSIA 413,).docx (CDC IT Security Staff BCP Policy) ([CSIA 413,).docx
(CDC IT Security Staff BCP Policy) ([CSIA 413,).docxjoyjonna282
 
Riskmitigationwhitepaperweb 1
Riskmitigationwhitepaperweb 1Riskmitigationwhitepaperweb 1
Riskmitigationwhitepaperweb 1Yasmin AbdelAziz
 
Six Keys to Securing Critical Infrastructure and NERC Compliance
Six Keys to Securing Critical Infrastructure and NERC ComplianceSix Keys to Securing Critical Infrastructure and NERC Compliance
Six Keys to Securing Critical Infrastructure and NERC ComplianceLumension
 
Businesses involved in mergers and acquisitions must exercise due di.docx
Businesses involved in mergers and acquisitions must exercise due di.docxBusinesses involved in mergers and acquisitions must exercise due di.docx
Businesses involved in mergers and acquisitions must exercise due di.docxdewhirstichabod
 
PLAN DE CONTINGENCIA.pdf
PLAN DE CONTINGENCIA.pdfPLAN DE CONTINGENCIA.pdf
PLAN DE CONTINGENCIA.pdfjosemaza20
 
Topic Describe each of the elements of a Business Continuity Plan .docx
Topic Describe each of the elements of a Business Continuity Plan .docxTopic Describe each of the elements of a Business Continuity Plan .docx
Topic Describe each of the elements of a Business Continuity Plan .docxjuliennehar
 
SECURITY
SECURITYSECURITY
SECURITYTony Fanelli
 
New hospital it strategy 2
New hospital it strategy 2New hospital it strategy 2
New hospital it strategy 2Pankaj Gupta
 
Escrow Presentation
Escrow PresentationEscrow Presentation
Escrow Presentationlucydavidson
 
Capstone Final Project
Capstone Final ProjectCapstone Final Project
Capstone Final Projectchris odle
 
EN_METAMORG_SERVICES [Modo de compatibilidad]
EN_METAMORG_SERVICES [Modo de compatibilidad]EN_METAMORG_SERVICES [Modo de compatibilidad]
EN_METAMORG_SERVICES [Modo de compatibilidad]Luis Martín
 
EN_METAMORG_SERVICES [Modo de compatibilidad]
EN_METAMORG_SERVICES [Modo de compatibilidad]EN_METAMORG_SERVICES [Modo de compatibilidad]
EN_METAMORG_SERVICES [Modo de compatibilidad]Luis Martín
 
Qatar Proposal
Qatar ProposalQatar Proposal
Qatar ProposalAbsar Husain
 
u10a1-Risk Assessment Report-Beji Jacob
u10a1-Risk Assessment Report-Beji Jacobu10a1-Risk Assessment Report-Beji Jacob
u10a1-Risk Assessment Report-Beji JacobBeji Jacob
 
The 7 Steps to Prevent IT-Caused Outages- A Comprehensive Approach
The 7 Steps to Prevent IT-Caused Outages- A Comprehensive ApproachThe 7 Steps to Prevent IT-Caused Outages- A Comprehensive Approach
The 7 Steps to Prevent IT-Caused Outages- A Comprehensive ApproachProtected Harbor
 
The Use of Spreadsheets: As it relates to Section 404 of the Sarbanes-Oxley Act.
The Use of Spreadsheets: As it relates to Section 404 of the Sarbanes-Oxley Act.The Use of Spreadsheets: As it relates to Section 404 of the Sarbanes-Oxley Act.
The Use of Spreadsheets: As it relates to Section 404 of the Sarbanes-Oxley Act.gueste080564
 
You will submit your roles and responsibilities portion of the final.docx
You will submit your roles and responsibilities portion of the final.docxYou will submit your roles and responsibilities portion of the final.docx
You will submit your roles and responsibilities portion of the final.docxshantayjewison
 
You will now create a database for the following seven tables. You w.docx
You will now create a database for the following seven tables. You w.docxYou will now create a database for the following seven tables. You w.docx
You will now create a database for the following seven tables. You w.docxshantayjewison
 

More Related Content

Similar to You have been hired as a consultant to design BCP for SanGrafix, a v.docx

During week 6 we develop the theory and application of capital bud.docx
During week 6 we develop the theory and application of capital bud.docxDuring week 6 we develop the theory and application of capital bud.docx
During week 6 we develop the theory and application of capital bud.docxjacksnathalie
 
Business continuity & disaster recovery
Business continuity & disaster recoveryBusiness continuity & disaster recovery
Business continuity & disaster recoveryGeorge Coutsoumbidis
 
Information Technology Disaster Planning
Information Technology Disaster PlanningInformation Technology Disaster Planning
Information Technology Disaster Planningguest340570
 
(CDC IT Security Staff BCP Policy) ([CSIA 413,).docx
(CDC IT Security Staff BCP Policy) ([CSIA 413,).docx (CDC IT Security Staff BCP Policy) ([CSIA 413,).docx
(CDC IT Security Staff BCP Policy) ([CSIA 413,).docxjoyjonna282
 
Riskmitigationwhitepaperweb 1
Riskmitigationwhitepaperweb 1Riskmitigationwhitepaperweb 1
Riskmitigationwhitepaperweb 1Yasmin AbdelAziz
 
Six Keys to Securing Critical Infrastructure and NERC Compliance
Six Keys to Securing Critical Infrastructure and NERC ComplianceSix Keys to Securing Critical Infrastructure and NERC Compliance
Six Keys to Securing Critical Infrastructure and NERC ComplianceLumension
 
Businesses involved in mergers and acquisitions must exercise due di.docx
Businesses involved in mergers and acquisitions must exercise due di.docxBusinesses involved in mergers and acquisitions must exercise due di.docx
Businesses involved in mergers and acquisitions must exercise due di.docxdewhirstichabod
 
PLAN DE CONTINGENCIA.pdf
PLAN DE CONTINGENCIA.pdfPLAN DE CONTINGENCIA.pdf
PLAN DE CONTINGENCIA.pdfjosemaza20
 
Topic Describe each of the elements of a Business Continuity Plan .docx
Topic Describe each of the elements of a Business Continuity Plan .docxTopic Describe each of the elements of a Business Continuity Plan .docx
Topic Describe each of the elements of a Business Continuity Plan .docxjuliennehar
 
New hospital it strategy 2
New hospital it strategy 2New hospital it strategy 2
New hospital it strategy 2Pankaj Gupta
 
Escrow Presentation
Escrow PresentationEscrow Presentation
Escrow Presentationlucydavidson
 
Capstone Final Project
Capstone Final ProjectCapstone Final Project
Capstone Final Projectchris odle
 
EN_METAMORG_SERVICES [Modo de compatibilidad]
EN_METAMORG_SERVICES [Modo de compatibilidad]EN_METAMORG_SERVICES [Modo de compatibilidad]
EN_METAMORG_SERVICES [Modo de compatibilidad]Luis Martín
 
EN_METAMORG_SERVICES [Modo de compatibilidad]
EN_METAMORG_SERVICES [Modo de compatibilidad]EN_METAMORG_SERVICES [Modo de compatibilidad]
EN_METAMORG_SERVICES [Modo de compatibilidad]Luis Martín
 
u10a1-Risk Assessment Report-Beji Jacob
u10a1-Risk Assessment Report-Beji Jacobu10a1-Risk Assessment Report-Beji Jacob
u10a1-Risk Assessment Report-Beji JacobBeji Jacob
 
The 7 Steps to Prevent IT-Caused Outages- A Comprehensive Approach
The 7 Steps to Prevent IT-Caused Outages- A Comprehensive ApproachThe 7 Steps to Prevent IT-Caused Outages- A Comprehensive Approach
The 7 Steps to Prevent IT-Caused Outages- A Comprehensive ApproachProtected Harbor
 
The Use of Spreadsheets: As it relates to Section 404 of the Sarbanes-Oxley Act.
The Use of Spreadsheets: As it relates to Section 404 of the Sarbanes-Oxley Act.The Use of Spreadsheets: As it relates to Section 404 of the Sarbanes-Oxley Act.
The Use of Spreadsheets: As it relates to Section 404 of the Sarbanes-Oxley Act.gueste080564
 

Similar to You have been hired as a consultant to design BCP for SanGrafix, a v.docx (20)

Applying Lean for information security operations centre
Applying Lean for information security operations centreApplying Lean for information security operations centre
Applying Lean for information security operations centre
 
During week 6 we develop the theory and application of capital bud.docx
During week 6 we develop the theory and application of capital bud.docxDuring week 6 we develop the theory and application of capital bud.docx
During week 6 we develop the theory and application of capital bud.docx
 
Business continuity & disaster recovery
Business continuity & disaster recoveryBusiness continuity & disaster recovery
Business continuity & disaster recovery
 
Information Technology Disaster Planning
Information Technology Disaster PlanningInformation Technology Disaster Planning
Information Technology Disaster Planning
 
(CDC IT Security Staff BCP Policy) ([CSIA 413,).docx
(CDC IT Security Staff BCP Policy) ([CSIA 413,).docx (CDC IT Security Staff BCP Policy) ([CSIA 413,).docx
(CDC IT Security Staff BCP Policy) ([CSIA 413,).docx
 
Riskmitigationwhitepaperweb 1
Riskmitigationwhitepaperweb 1Riskmitigationwhitepaperweb 1
Riskmitigationwhitepaperweb 1
 
Six Keys to Securing Critical Infrastructure and NERC Compliance
Six Keys to Securing Critical Infrastructure and NERC ComplianceSix Keys to Securing Critical Infrastructure and NERC Compliance
Six Keys to Securing Critical Infrastructure and NERC Compliance
 
Businesses involved in mergers and acquisitions must exercise due di.docx
Businesses involved in mergers and acquisitions must exercise due di.docxBusinesses involved in mergers and acquisitions must exercise due di.docx
Businesses involved in mergers and acquisitions must exercise due di.docx
 
PLAN DE CONTINGENCIA.pdf
PLAN DE CONTINGENCIA.pdfPLAN DE CONTINGENCIA.pdf
PLAN DE CONTINGENCIA.pdf
 
Topic Describe each of the elements of a Business Continuity Plan .docx
Topic Describe each of the elements of a Business Continuity Plan .docxTopic Describe each of the elements of a Business Continuity Plan .docx
Topic Describe each of the elements of a Business Continuity Plan .docx
 
SECURITY
SECURITYSECURITY
SECURITY
 
New hospital it strategy 2
New hospital it strategy 2New hospital it strategy 2
New hospital it strategy 2
 
Escrow Presentation
Escrow PresentationEscrow Presentation
Escrow Presentation
 
Capstone Final Project
Capstone Final ProjectCapstone Final Project
Capstone Final Project
 
EN_METAMORG_SERVICES [Modo de compatibilidad]
EN_METAMORG_SERVICES [Modo de compatibilidad]EN_METAMORG_SERVICES [Modo de compatibilidad]
EN_METAMORG_SERVICES [Modo de compatibilidad]
 
EN_METAMORG_SERVICES [Modo de compatibilidad]
EN_METAMORG_SERVICES [Modo de compatibilidad]EN_METAMORG_SERVICES [Modo de compatibilidad]
EN_METAMORG_SERVICES [Modo de compatibilidad]
 
Qatar Proposal
Qatar ProposalQatar Proposal
Qatar Proposal
 
u10a1-Risk Assessment Report-Beji Jacob
u10a1-Risk Assessment Report-Beji Jacobu10a1-Risk Assessment Report-Beji Jacob
u10a1-Risk Assessment Report-Beji Jacob
 
The 7 Steps to Prevent IT-Caused Outages- A Comprehensive Approach
The 7 Steps to Prevent IT-Caused Outages- A Comprehensive ApproachThe 7 Steps to Prevent IT-Caused Outages- A Comprehensive Approach
The 7 Steps to Prevent IT-Caused Outages- A Comprehensive Approach
 
The Use of Spreadsheets: As it relates to Section 404 of the Sarbanes-Oxley Act.
The Use of Spreadsheets: As it relates to Section 404 of the Sarbanes-Oxley Act.The Use of Spreadsheets: As it relates to Section 404 of the Sarbanes-Oxley Act.
The Use of Spreadsheets: As it relates to Section 404 of the Sarbanes-Oxley Act.
 

More from shantayjewison

You will submit your roles and responsibilities portion of the final.docx
You will submit your roles and responsibilities portion of the final.docxYou will submit your roles and responsibilities portion of the final.docx
You will submit your roles and responsibilities portion of the final.docxshantayjewison
 
You will now create a database for the following seven tables. You w.docx
You will now create a database for the following seven tables. You w.docxYou will now create a database for the following seven tables. You w.docx
You will now create a database for the following seven tables. You w.docxshantayjewison
 
You will NOT be able to copy and paste a graph into the Discussion B.docx
You will NOT be able to copy and paste a graph into the Discussion B.docxYou will NOT be able to copy and paste a graph into the Discussion B.docx
You will NOT be able to copy and paste a graph into the Discussion B.docxshantayjewison
 
You will reply to 2 classmates. Every reply should be 200-300 word.docx
You will reply to 2 classmates. Every reply should be 200-300 word.docxYou will reply to 2 classmates. Every reply should be 200-300 word.docx
You will reply to 2 classmates. Every reply should be 200-300 word.docxshantayjewison
 
You will now pretend to be Michelangelo and compose a discussion boa.docx
You will now pretend to be Michelangelo and compose a discussion boa.docxYou will now pretend to be Michelangelo and compose a discussion boa.docx
You will now pretend to be Michelangelo and compose a discussion boa.docxshantayjewison
 
You will benefit most from attending the graded Seminar as an active.docx
You will benefit most from attending the graded Seminar as an active.docxYou will benefit most from attending the graded Seminar as an active.docx
You will benefit most from attending the graded Seminar as an active.docxshantayjewison
 
you will be researching an historical figure in the public health wo.docx
you will be researching an historical figure in the public health wo.docxyou will be researching an historical figure in the public health wo.docx
you will be researching an historical figure in the public health wo.docxshantayjewison
 
You will develop a PowerPoint on life span development from infancy .docx
You will develop a PowerPoint on life span development from infancy .docxYou will develop a PowerPoint on life span development from infancy .docx
You will develop a PowerPoint on life span development from infancy .docxshantayjewison
 
You will conduct an observation for at least 1 hour in a setting.docx
You will conduct an observation for at least 1 hour in a setting.docxYou will conduct an observation for at least 1 hour in a setting.docx
You will conduct an observation for at least 1 hour in a setting.docxshantayjewison
 
You will be required to do a term paper on one of the topics lis.docx
You will be required to do a term paper on one of the topics lis.docxYou will be required to do a term paper on one of the topics lis.docx
You will be required to do a term paper on one of the topics lis.docxshantayjewison
 
You will be asked to analyze an organizational culture. This could b.docx
You will be asked to analyze an organizational culture. This could b.docxYou will be asked to analyze an organizational culture. This could b.docx
You will be asked to analyze an organizational culture. This could b.docxshantayjewison
 
You will accomplish this by writing a 4 pages APA formatted pape.docx
You will accomplish this by writing a 4 pages APA formatted pape.docxYou will accomplish this by writing a 4 pages APA formatted pape.docx
You will accomplish this by writing a 4 pages APA formatted pape.docxshantayjewison
 
You were recently involved with a penetration test of ACME Corp. tha.docx
You were recently involved with a penetration test of ACME Corp. tha.docxYou were recently involved with a penetration test of ACME Corp. tha.docx
You were recently involved with a penetration test of ACME Corp. tha.docxshantayjewison
 
You will answer the developmental stages for (Infancy, Early Child.docx
You will answer the developmental stages for (Infancy, Early Child.docxYou will answer the developmental stages for (Infancy, Early Child.docx
You will answer the developmental stages for (Infancy, Early Child.docxshantayjewison
 
you should include an overview of Mexican society and economic devel.docx
you should include an overview of Mexican society and economic devel.docxyou should include an overview of Mexican society and economic devel.docx
you should include an overview of Mexican society and economic devel.docxshantayjewison
 
You see a 1-week-old Asian infant for a weight check. The infant is .docx
You see a 1-week-old Asian infant for a weight check. The infant is .docxYou see a 1-week-old Asian infant for a weight check. The infant is .docx
You see a 1-week-old Asian infant for a weight check. The infant is .docxshantayjewison
 
You shared a very interesting point as it relates to what type of or.docx
You shared a very interesting point as it relates to what type of or.docxYou shared a very interesting point as it relates to what type of or.docx
You shared a very interesting point as it relates to what type of or.docxshantayjewison
 
You should explain how EA enables each phase, how it fits into.docx
You should explain how EA enables each phase, how it fits into.docxYou should explain how EA enables each phase, how it fits into.docx
You should explain how EA enables each phase, how it fits into.docxshantayjewison
 
You should retype the given research paper on Mobile Device Protec.docx
You should retype the given research paper on Mobile Device Protec.docxYou should retype the given research paper on Mobile Device Protec.docx
You should retype the given research paper on Mobile Device Protec.docxshantayjewison
 
You receive a document (linked below) by certified mail. After readi.docx
You receive a document (linked below) by certified mail. After readi.docxYou receive a document (linked below) by certified mail. After readi.docx
You receive a document (linked below) by certified mail. After readi.docxshantayjewison
 

More from shantayjewison (20)

You will submit your roles and responsibilities portion of the final.docx
You will submit your roles and responsibilities portion of the final.docxYou will submit your roles and responsibilities portion of the final.docx
You will submit your roles and responsibilities portion of the final.docx
 
You will now create a database for the following seven tables. You w.docx
You will now create a database for the following seven tables. You w.docxYou will now create a database for the following seven tables. You w.docx
You will now create a database for the following seven tables. You w.docx
 
You will NOT be able to copy and paste a graph into the Discussion B.docx
You will NOT be able to copy and paste a graph into the Discussion B.docxYou will NOT be able to copy and paste a graph into the Discussion B.docx
You will NOT be able to copy and paste a graph into the Discussion B.docx
 
You will reply to 2 classmates. Every reply should be 200-300 word.docx
You will reply to 2 classmates. Every reply should be 200-300 word.docxYou will reply to 2 classmates. Every reply should be 200-300 word.docx
You will reply to 2 classmates. Every reply should be 200-300 word.docx
 
You will now pretend to be Michelangelo and compose a discussion boa.docx
You will now pretend to be Michelangelo and compose a discussion boa.docxYou will now pretend to be Michelangelo and compose a discussion boa.docx
You will now pretend to be Michelangelo and compose a discussion boa.docx
 
You will benefit most from attending the graded Seminar as an active.docx
You will benefit most from attending the graded Seminar as an active.docxYou will benefit most from attending the graded Seminar as an active.docx
You will benefit most from attending the graded Seminar as an active.docx
 
you will be researching an historical figure in the public health wo.docx
you will be researching an historical figure in the public health wo.docxyou will be researching an historical figure in the public health wo.docx
you will be researching an historical figure in the public health wo.docx
 
You will develop a PowerPoint on life span development from infancy .docx
You will develop a PowerPoint on life span development from infancy .docxYou will develop a PowerPoint on life span development from infancy .docx
You will develop a PowerPoint on life span development from infancy .docx
 
You will conduct an observation for at least 1 hour in a setting.docx
You will conduct an observation for at least 1 hour in a setting.docxYou will conduct an observation for at least 1 hour in a setting.docx
You will conduct an observation for at least 1 hour in a setting.docx
 
You will be required to do a term paper on one of the topics lis.docx
You will be required to do a term paper on one of the topics lis.docxYou will be required to do a term paper on one of the topics lis.docx
You will be required to do a term paper on one of the topics lis.docx
 
You will be asked to analyze an organizational culture. This could b.docx
You will be asked to analyze an organizational culture. This could b.docxYou will be asked to analyze an organizational culture. This could b.docx
You will be asked to analyze an organizational culture. This could b.docx
 
You will accomplish this by writing a 4 pages APA formatted pape.docx
You will accomplish this by writing a 4 pages APA formatted pape.docxYou will accomplish this by writing a 4 pages APA formatted pape.docx
You will accomplish this by writing a 4 pages APA formatted pape.docx
 
You were recently involved with a penetration test of ACME Corp. tha.docx
You were recently involved with a penetration test of ACME Corp. tha.docxYou were recently involved with a penetration test of ACME Corp. tha.docx
You were recently involved with a penetration test of ACME Corp. tha.docx
 
You will answer the developmental stages for (Infancy, Early Child.docx
You will answer the developmental stages for (Infancy, Early Child.docxYou will answer the developmental stages for (Infancy, Early Child.docx
You will answer the developmental stages for (Infancy, Early Child.docx
 
you should include an overview of Mexican society and economic devel.docx
you should include an overview of Mexican society and economic devel.docxyou should include an overview of Mexican society and economic devel.docx
you should include an overview of Mexican society and economic devel.docx
 
You see a 1-week-old Asian infant for a weight check. The infant is .docx
You see a 1-week-old Asian infant for a weight check. The infant is .docxYou see a 1-week-old Asian infant for a weight check. The infant is .docx
You see a 1-week-old Asian infant for a weight check. The infant is .docx
 
You shared a very interesting point as it relates to what type of or.docx
You shared a very interesting point as it relates to what type of or.docxYou shared a very interesting point as it relates to what type of or.docx
You shared a very interesting point as it relates to what type of or.docx
 
You should explain how EA enables each phase, how it fits into.docx
You should explain how EA enables each phase, how it fits into.docxYou should explain how EA enables each phase, how it fits into.docx
You should explain how EA enables each phase, how it fits into.docx
 
You should retype the given research paper on Mobile Device Protec.docx
You should retype the given research paper on Mobile Device Protec.docxYou should retype the given research paper on Mobile Device Protec.docx
You should retype the given research paper on Mobile Device Protec.docx
 
You receive a document (linked below) by certified mail. After readi.docx
You receive a document (linked below) by certified mail. After readi.docxYou receive a document (linked below) by certified mail. After readi.docx
You receive a document (linked below) by certified mail. After readi.docx
 

Recently uploaded

Holdier Curriculum Vitae (April 2024).pdf
Holdier Curriculum Vitae (April 2024).pdfHoldier Curriculum Vitae (April 2024).pdf
Holdier Curriculum Vitae (April 2024).pdfagholdier
 
Key note speaker Neum_Admir Softic_ENG.pdf
Key note speaker Neum_Admir Softic_ENG.pdfKey note speaker Neum_Admir Softic_ENG.pdf
Key note speaker Neum_Admir Softic_ENG.pdfAdmir Softic
 
FSB Advising Checklist - Orientation 2024
FSB Advising Checklist - Orientation 2024FSB Advising Checklist - Orientation 2024
FSB Advising Checklist - Orientation 2024Elizabeth Walsh
 
UGC NET Paper 1 Mathematical Reasoning & Aptitude.pdf
UGC NET Paper 1 Mathematical Reasoning & Aptitude.pdfUGC NET Paper 1 Mathematical Reasoning & Aptitude.pdf
UGC NET Paper 1 Mathematical Reasoning & Aptitude.pdfNirmal Dwivedi
 
Micro-Scholarship, What it is, How can it help me.pdf
Micro-Scholarship, What it is, How can it help me.pdfMicro-Scholarship, What it is, How can it help me.pdf
Micro-Scholarship, What it is, How can it help me.pdfPoh-Sun Goh
 
COMMUNICATING NEGATIVE NEWS - APPROACHES .pptx
COMMUNICATING NEGATIVE NEWS - APPROACHES .pptxCOMMUNICATING NEGATIVE NEWS - APPROACHES .pptx
COMMUNICATING NEGATIVE NEWS - APPROACHES .pptxannathomasp01
 
How to Give a Domain for a Field in Odoo 17
How to Give a Domain for a Field in Odoo 17How to Give a Domain for a Field in Odoo 17
How to Give a Domain for a Field in Odoo 17Celine George
 
HMCS Max Bernays Pre-Deployment Brief (May 2024).pptx
HMCS Max Bernays Pre-Deployment Brief (May 2024).pptxHMCS Max Bernays Pre-Deployment Brief (May 2024).pptx
HMCS Max Bernays Pre-Deployment Brief (May 2024).pptxEsquimalt MFRC
 
Plant propagation: Sexual and Asexual propapagation.pptx
Plant propagation: Sexual and Asexual propapagation.pptxPlant propagation: Sexual and Asexual propapagation.pptx
Plant propagation: Sexual and Asexual propapagation.pptxUmeshTimilsina1
 
Jamworks pilot and AI at Jisc (20/03/2024)
Jamworks pilot and AI at Jisc (20/03/2024)Jamworks pilot and AI at Jisc (20/03/2024)
Jamworks pilot and AI at Jisc (20/03/2024)Jisc
 
This PowerPoint helps students to consider the concept of infinity.
This PowerPoint helps students to consider the concept of infinity.This PowerPoint helps students to consider the concept of infinity.
This PowerPoint helps students to consider the concept of infinity.christianmathematics
 
Google Gemini An AI Revolution in Education.pptx
Google Gemini An AI Revolution in Education.pptxGoogle Gemini An AI Revolution in Education.pptx
Google Gemini An AI Revolution in Education.pptxDr. Sarita Anand
 
Interdisciplinary_Insights_Data_Collection_Methods.pptx
Interdisciplinary_Insights_Data_Collection_Methods.pptxInterdisciplinary_Insights_Data_Collection_Methods.pptx
Interdisciplinary_Insights_Data_Collection_Methods.pptxPooja Bhuva
 
Wellbeing inclusion and digital dystopias.pptx
Wellbeing inclusion and digital dystopias.pptxWellbeing inclusion and digital dystopias.pptx
Wellbeing inclusion and digital dystopias.pptxJisc
 
Sociology 101 Demonstration of Learning Exhibit
Sociology 101 Demonstration of Learning ExhibitSociology 101 Demonstration of Learning Exhibit
Sociology 101 Demonstration of Learning Exhibitjbellavia9
 
ICT role in 21st century education and it's challenges.
ICT role in 21st century education and it's challenges.ICT role in 21st century education and it's challenges.
ICT role in 21st century education and it's challenges.MaryamAhmad92
 
Single or Multiple melodic lines structure
Single or Multiple melodic lines structureSingle or Multiple melodic lines structure
Single or Multiple melodic lines structuredhanjurrannsibayan2
 
How to Create and Manage Wizard in Odoo 17
How to Create and Manage Wizard in Odoo 17How to Create and Manage Wizard in Odoo 17
How to Create and Manage Wizard in Odoo 17Celine George
 
Jual Obat Aborsi Hongkong ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan...
Jual Obat Aborsi Hongkong ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan...Jual Obat Aborsi Hongkong ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan...
Jual Obat Aborsi Hongkong ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan...ZurliaSoop
 
ICT Role in 21st Century Education & its Challenges.pptx
ICT Role in 21st Century Education & its Challenges.pptxICT Role in 21st Century Education & its Challenges.pptx
ICT Role in 21st Century Education & its Challenges.pptxAreebaZafar22
 

Recently uploaded (20)

Holdier Curriculum Vitae (April 2024).pdf
Holdier Curriculum Vitae (April 2024).pdfHoldier Curriculum Vitae (April 2024).pdf
Holdier Curriculum Vitae (April 2024).pdf
 
Key note speaker Neum_Admir Softic_ENG.pdf
Key note speaker Neum_Admir Softic_ENG.pdfKey note speaker Neum_Admir Softic_ENG.pdf
Key note speaker Neum_Admir Softic_ENG.pdf
 
FSB Advising Checklist - Orientation 2024
FSB Advising Checklist - Orientation 2024FSB Advising Checklist - Orientation 2024
FSB Advising Checklist - Orientation 2024
 
UGC NET Paper 1 Mathematical Reasoning & Aptitude.pdf
UGC NET Paper 1 Mathematical Reasoning & Aptitude.pdfUGC NET Paper 1 Mathematical Reasoning & Aptitude.pdf
UGC NET Paper 1 Mathematical Reasoning & Aptitude.pdf
 
Micro-Scholarship, What it is, How can it help me.pdf
Micro-Scholarship, What it is, How can it help me.pdfMicro-Scholarship, What it is, How can it help me.pdf
Micro-Scholarship, What it is, How can it help me.pdf
 
COMMUNICATING NEGATIVE NEWS - APPROACHES .pptx
COMMUNICATING NEGATIVE NEWS - APPROACHES .pptxCOMMUNICATING NEGATIVE NEWS - APPROACHES .pptx
COMMUNICATING NEGATIVE NEWS - APPROACHES .pptx
 
How to Give a Domain for a Field in Odoo 17
How to Give a Domain for a Field in Odoo 17How to Give a Domain for a Field in Odoo 17
How to Give a Domain for a Field in Odoo 17
 
HMCS Max Bernays Pre-Deployment Brief (May 2024).pptx
HMCS Max Bernays Pre-Deployment Brief (May 2024).pptxHMCS Max Bernays Pre-Deployment Brief (May 2024).pptx
HMCS Max Bernays Pre-Deployment Brief (May 2024).pptx
 
Plant propagation: Sexual and Asexual propapagation.pptx
Plant propagation: Sexual and Asexual propapagation.pptxPlant propagation: Sexual and Asexual propapagation.pptx
Plant propagation: Sexual and Asexual propapagation.pptx
 
Jamworks pilot and AI at Jisc (20/03/2024)
Jamworks pilot and AI at Jisc (20/03/2024)Jamworks pilot and AI at Jisc (20/03/2024)
Jamworks pilot and AI at Jisc (20/03/2024)
 
This PowerPoint helps students to consider the concept of infinity.
This PowerPoint helps students to consider the concept of infinity.This PowerPoint helps students to consider the concept of infinity.
This PowerPoint helps students to consider the concept of infinity.
 
Google Gemini An AI Revolution in Education.pptx
Google Gemini An AI Revolution in Education.pptxGoogle Gemini An AI Revolution in Education.pptx
Google Gemini An AI Revolution in Education.pptx
 
Interdisciplinary_Insights_Data_Collection_Methods.pptx
Interdisciplinary_Insights_Data_Collection_Methods.pptxInterdisciplinary_Insights_Data_Collection_Methods.pptx
Interdisciplinary_Insights_Data_Collection_Methods.pptx
 
Wellbeing inclusion and digital dystopias.pptx
Wellbeing inclusion and digital dystopias.pptxWellbeing inclusion and digital dystopias.pptx
Wellbeing inclusion and digital dystopias.pptx
 
Sociology 101 Demonstration of Learning Exhibit
Sociology 101 Demonstration of Learning ExhibitSociology 101 Demonstration of Learning Exhibit
Sociology 101 Demonstration of Learning Exhibit
 
ICT role in 21st century education and it's challenges.
ICT role in 21st century education and it's challenges.ICT role in 21st century education and it's challenges.
ICT role in 21st century education and it's challenges.
 
Single or Multiple melodic lines structure
Single or Multiple melodic lines structureSingle or Multiple melodic lines structure
Single or Multiple melodic lines structure
 
How to Create and Manage Wizard in Odoo 17
How to Create and Manage Wizard in Odoo 17How to Create and Manage Wizard in Odoo 17
How to Create and Manage Wizard in Odoo 17
 
Jual Obat Aborsi Hongkong ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan...
Jual Obat Aborsi Hongkong ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan...Jual Obat Aborsi Hongkong ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan...
Jual Obat Aborsi Hongkong ( Asli No.1 ) 085657271886 Obat Penggugur Kandungan...
 
ICT Role in 21st Century Education & its Challenges.pptx
ICT Role in 21st Century Education & its Challenges.pptxICT Role in 21st Century Education & its Challenges.pptx
ICT Role in 21st Century Education & its Challenges.pptx
 

You have been hired as a consultant to design BCP for SanGrafix, a v.docx

  • 1. You have been hired as a consultant to design BCP for SanGrafix, a video and PC game design company. SanGrafix's newest game has become a hot seller, and the company anticipates rapid growth. It's moving into a new facility and will be installing a new network. Because competition is fierce in the game industry, SanGrafix wants to be fully secured, documented, and maintained while providing high availability, scalability, and performance. Based on your current technology and information security knowledge, for this project you will design a BCP based off of the company profile below: A. Primary location in San Francisco, CA B. Secondary location/hot site in Sunnyvale, CA C. Capable of supporting 220 users in these departments: Accounting and Payroll, 16; Research and Development, 48; Sales and Marketing, 40; Order Processing, Shipping, and Receiving, 36; secretarial and office management staff, 20; upper management (including the president, vice president, and general manager), 10; Customer Relations and Support, 30; Technology Support, 20. D. Full OC3 Internet connection First step is to issue a clear policy statement on the Business Continuity Plan. At a minimum, this statement should contain the following instructions: The organization should develop a comprehensive Business Continuity Plan. A formal risk assessment should be undertaken in order to determine the requirements for the Business Continuity Plan. The Business Continuity Plan should cover all essential and critical business activities. The Business Continuity Plan should be periodically tested in a simulated environment to ensure that it can be implemented in emergency situations and that the management and staff understand how it is to be executed. All staff must be made aware of the Business Continuity Plan
  • 2. and their own respective roles. The Business Continuity Plan is to be kept up to date to take into account changing circumstances. BELOW IS THE EXAMPLE Policy Statement 1. Agencies are required to develop, implement, test and maintain a Business Continuity Plan (BCP) for all Information Technology Resources (ITR) that deliver or support core systems and services on behalf of the Commonwealth of Massachusetts. For purposes of this policy, the BCP is the overall plan that facilitates sustaining critical operations while recovering from a disruption. BCP’s are required to include, at a minimum: Standard Incident Response Procedures: An information system- focused set of procedures to be used when an event occurs that is not part of the standard operation of a service and may or does cause disruption to or a reduction in the quality of services and Customer productivity. Disaster Recovery Plan (DRP): An information system-focused plan designed to restore operability of the target system, application, or computer facility infrastructure in the event of large scale disaster and/or other cataclysmic event. Continuity of Operations Plans (COOP): An information system-focused plan invoked under a DRP when access to the primary facility infrastructure is prevented for an extended period, requiring operations to be restored from an alternate site after an emergency. The COOP may be supported by multiple information system contingency plans to address recovery of impacted individual systems once the alternate facility has been established. The COOP only addresses information system disruptions that require relocation. (From NIST SP 800-34). 2. Agencies are required to conduct risk assessments to identify, estimate, and prioritize risks to organizational operations and conduct business impact analyses to identify all critical functions of the agency, entity or business unit and their supporting information systems. ITD’s Compliance Assurance
  • 3. Office is available to assist and/or conduct such assessments.3. Agencies are required to articulate specific information, including the details necessary to effectively respond, manage, and recover from either an incident or a catastrophic event. Further, protecting data and confidential information should be integrated into the above referenced details.4. Agencies are required to ensure that all BCPs and supporting DRPs and COOPs are in alignment with and in support of any and all legal and regulatory requirements that the agency ITR’s are subject to.5. Agencies are required, at a minimum, to include the following documentation and procedures in their BCP and its supporting components: Scope / Objectives Risk Evaluation and Required Security Controls Business Impact Analysis Communications Procedures BCP Organization Structure Activation of plans Succession of Authority Procedures BCP Team Roles and Responsibilities Incident/Event Response Teams Emergency/DR Response Teams Primary and Alternate Contact Lists Damage Assessment Recovery Plans Critical System Recovery Prioritization of Recovery Interdependencies Resource requirements Security Controls COOP Mobilizing Alternate Locations / Resources Managing Alternate Locations / Resources Critical System Support Short term Long term
  • 4. Local Regional Pandemic 6. Agencies are required to verify that critical third party vendors meet agency business continuity requirements during the contract negotiating process and prior to contract agreement and signature. Alternate third party vendors are required to be identified where appropriate. 7. Agencies are required to securely store copies of plans and supporting materials in a remote location; at a sufficient distance to escape any damage from a disaster at the agency’s main information processing facilities and be available (via remote connection, external e- mail location, etc.).8. Agencies are required to document, implement and annually test plans including the testing of all appropriate security provisions to minimize impact to systems or processes from the effects of major failures of IT Resources or disasters.9. Agencies are required to identify appropriate mechanisms to ensure that plans remain current and updated between annual tests and reviews accounting for: Change management implications New/Major upgrades of system implementations New policy adoption New contract implementations New threat/risk identification Staff/resource/responsibility changes 1. Agencies are required to publish plans and sufficiently train any and all individuals that are required or responsible for supporting the BCP NO PLAGIARISM APA FORMAT