第-业务连续性和灾难恢复

BusinesscontinuityandDisaster 业务连续性 ReasonsforMakingBCPPartoftheandBusiness BusinessContinuity The设备故障Utility火灾/ Fire/水 Naturaldisasters(earthquakes,snow/hail/ice,lightning,热

Heat/HumidityElectromagneticemanationsHostileactivityTechnology FromDataProErrors&omissionsFire,water,electricalDishonestemployees

Disgruntledemployees10%Outsiderthreats GoalofThegoalistoassisttheorganization/businesstocontinuefunctioningeventhoughnormaloperationsaredisruptedIncludesstepstoBeforea Duringa Aftera ReasonsforMakingBCPPartoftheandBusinessContinuity BusinessContinuity MakingBCPPartofthe andBusinesscontinuityshouldbeapartofthesecurityprogramandbusinessdecisionsasopposedtobeinganentitythatstandsoffinacornerbyitself. Whenproperlyintegratedwithchangemanagementprocesses,itstandsmuchbetterchanceofbeingcontinuallyupdatedandimprovedBusinesscontinuityisafoundationalpieceofaneffectivesecurityprogramandiscriticaltoensuringrelevanceintimeofneed. ReasonsforMakingBCPPartoftheandBusinessContinuity BusinessContinuity Business nningAmajorrequirementforanythingthathassuchfar-reachingramificationsbusiness 像BCP这样影响深远的事项，是主要的需求是管理层的支持Itiscriticalthatmanagementunderstandswhattherealthreatsareto theconsequencesofthosethreats,andthepotentiallossvaluesforeach没有管理层的支持，就不会Itisimportantthatmanagementsettheoverallgoalsof nning,andshouldhelpsettheprioritiesofwhatshouldbedealtwith管理层设定BCP的整体目标很重要 ReasonsforMakingBCPPartoftheandBusinessContinuity BusinessContinuity BusinessContinuityProjectRecoveryndesignandContinual ProjectScope nMarksthebeginningoftheBCPItentailscreatingthescopefor

意味着创建计划的范 BCPShouldbeformedandgiventheresponsibilitytocreate,implementandtest 应成立并给予职责来创建、实施和测试计informationsystemsandsecurity由来自高管、所有业务部门 人员和安全管理员的代表组成SeniorManagement’sIsultimateresponsibleforallfourphasesof 高管负最终责任businesscontinuitycoordinator BusinessContinuityProjectRecoveryndesignandContinual 2.2BIABIA(Business 是帮助业务部门了解中 对业务带来的影响影响可能是financial( suchastheinabilitytorespondtocustomer) BIA的三个主要目关键程度排序CriticalityEverycriticalbusinessunitprocessmustbeidentifiedandprioritizedandtheimpactadisruptiveeventmustbe中断时间估计DowntimeEstimatestheMTD umTolerableDowntimethatthebusinesscantoleratestillremaina 资源需求确认ResourceTheresourcerequirementsforthecriticalprocessesarealsoidentifiedatthistime,themosttime-sensitiveprocessesreceivingthemostresource BIA步Selectindividualstointerviewfordatagathering.访谈以收集信Createdata-gatheringtechniquessurveysquestionnairesqualitativeandtativeapproaches). Identify ’scriticalbusinessfunctions.识别关键业务职Identifytheresourcesthesefunctionsdependupon.识别职能依赖Calculatehowlongthesefunctionscansurvivewithoutthese 识别脆弱性Calculatetheriskforeachdifferentbusinessfunction.计算每项业务的风findingsandreportthemtomanagement.文档化并向管理层报 互相MostBCPsaredevelopedtocovertheenterpriseasawhole,insteadofdealingwithonlyportionsoftheorganization. nsneedtobecompatiblewiththeenterprisewidePreventive SARS为例的 上游

可能发生的情无法与机构继续合作终止合约

后备方建立机构内原料、件供货商

评估机构内原料的安(或减低库存)客户

0.2.1无法与机构继续合作终止0.3.1客户因sars导致 评估标准1低2中3高 1低20天以2中11203高110 低中高123低1123中2246高3369 Unix,NT服务器Database 员工终端和LAN&

PBXNT或Unix服务器

00BusinessContinuityProjectRecoveryndesignandContinual RecoveryBusinessProcessFacilitySupplyandTechnologyTheEnd-UserDataBackupRecoveryand BusinessProcessTheBCPteammustunderstandthefollowingaboutcriticalbusinessRequiredRequiredInputandoutputWorkflowRequiredtimeforThiswillallowtheteamtoidentifythreatsandthecontrolstoensuretheleastamountofprocessinterruption.这将允许团队识 RecoveryBusinessProcessFacilitySupplyandTechnologyTheEnd-UserDataBackupRecoveryand FacilityHotWarmColdredundant–rollinghot hotTertiarySites第三的，第三位的（backuptotheReciprocalAgreements FacilityHotSiteReadywithinhoursforoperation几小时内就可准备就Highlyavailable高度可Usuallyusedforshort-termsolutionsbutavailableforlongerstays通常用于短期解决Annualtestingavailable可每HotSiteLimitedonhardwareandsoftwarechoices有限的硬件和软件选WarmandColdSiteAvailableforlongertimeframesbecauseofthereducedcosts因减少了成本可用于长时Practicalforproprietaryhardwareorsoftwareuse对使用专有硬件和软件是实用WarmandColdSite Not yavailable不是立即能使101perational Resourcesforoperationsnot yavailable运营资源不是立即可获FacilityItisimportanttounderstandthatthedifferentsitetypeslistedhereareprovidedbyservicebureaus,meaninga paysamonthlysubscriptionfeetoanother forthisspaceandAhotsiteisasubscriptionservice.Aredundantsiteisasiteownedandmaintainedbythe ,meaningthedoesnotpayanyoneelsefortheAredundantsitemightbe“hot”innature,meaningitisreadyforproductionquickly,buttheCISSPexamdifferentiatesbetweenahotsite(subscriptionservice)andaredundantsite(ownedbythe RecoveryBusinessProcessFacilitySupplyandTechnologyTheEnd-UserDataBackupRecoveryand SupplyandTechnologyHardwareSoftwareHuman SupplyandTechnologyHardwareTheteamhasidentifiedtheequipmentrequiredtokeepthecriticalfunctionsupandrunning.Thismayincludeservers,userworkstations,routers,switches,tapeback-updevices,hubs,andmore.mustmakeadecisionbetweendependinguponthevendororpurchasingredundantsystemsandstoringthemasbackupsshouldidentifylegacydevices遗留下来又难以更新的老化的;过时commercialofftheshelfCOTS)现货商品/非专门设计的商identifythenecessary SupplyandTechnologySoftwaresoftware SupplyandTechnology ationmayneedtoincludeinformationonhowtoinstallimages,configureoperatingsystemsandservers,andproperlyinstallutilitiesandproprietarysoftware. ationcouldincludeacallingtree,whichoutlineswhoshouldbecontacted,inwhatorder,andwhoisresponsibleforngthecalling. ationmustalsocontaincontactinformationforspecificvendors,emergencyagencies,offsitefacilities,andanyotherentitythatmayneedtobecontactedinatimeofneed. SupplyandTechnologyHumanexecutive --ifsomeoneinaseniorexecutivepositionretires,leaves,oris“deputyrolesOften,largerorganizationsalsohavea indicatingthattwoormoreoftheseniorstaffcannotbeexposedtoaparticularriskatthesametime.Forexample,theCEOand cannottravelonthesame RecoveryBusinessProcessFacilitySupplyandTechnologyTheEnd-UserDataBackupRecoveryand TheEnd-UserThefirstissuepertainingtousersishowtheywillbenotifiedofthedisasterandwholthemwheretogoandAtreestructureofmanagerscanbedevelopedsothatonceadisasterhits,the thetopofthetreecallstwomanagers,andtheyinturncallthreemanagers,andsoonuntilallmanagersarenotified.Then,oneortwopeoplemustbeinchargeofcoordinatingtheissuespertainingtoThefolksinchargeofdirectingshouldbereadilyidentifiable—bywearinganhatandvest,forexample—andshouldbelocatedinareaswheretheycanbeseenbyTheBCPteamneedstoidentifyuserrequirements,suchaswhetheruserscanworkstand-alonePCsorneedtobeconnectedinanetworktofulfillspecificTheBCPteamalsoneedstoidentifyhowcurrentautomatedtaskscanbecarriedmanuallyif esnecessary.Ifthenetworkisgoingtobedownfor12hours,t0:1ecessary RecoveryBusinessProcessFacilitySupplyandTechnologyTheEnd-UserDataBackupRecoveryand DataBackupfulldifferentialincrementalElectronicBackupChoosingaSoftware

Full

事务冗余(transactionElectronicBackupElectronicvaulting电子备份传送Referstothetransferofbackupdatatoanoff-sitelocation.Thisisprimarilyaprocessof thedatathroughcommunicationslinestoaserveratan 站 ElectronicBackupRemote 日志Rmunicationlineisusedtotransmitlivedataasit把日志或者处理记录传 站 //

RecoveryBusinessProcessFacilitySupplyandTechnologyTheEnd-UserDataBackupRecoveryand

isanewtypeofcoveragethatinsureslossescausedbydenial-of-serviceattacks,malwaredamages,hackers,electronictheft,privacy-relatedlawsuits,andmore.businessinterruptionif isoutofbusinessforacertainlengthoftime, willpayforspecifiedexpensesandlostaccountsreceivableinsuranceIfa cannotcollectonitsaccountsreceivableforonereasonoranother,thistypeofcoveragecoverspartorallofthelossesand RecoveryBusinessProcessFacilitySupplyandTechnologyTheEnd-UserDataBackupRecoveryand RecoveryandThefollowingaresomeexamplesofteamsthat maytoconstruct一个公司可能需要创建以下团队Damageassessment 损失评•Legal•Mediarelations•Networkrecovery•Relocation•Restoration•Salvage•Security munications

法务通信 BusinessContinuityProjectRecoveryndesignandContinual ndesignand Goalsfor nsThegeneralstructureofabusiness DifferentTypesof ndesignand Goalsfor ResponsibilityPrioritiesImplementationandtesting ndesignandThegeneralstructureofabusiness

ndesignandD