Back to Course

Incident Response

0% Complete
0/0 Steps
  1. Incident Response
    Incident Reporting
  2. Incident Response Use Cases
    Lab Setup
  3. Role Playing - Shift Manager
  4. Demonstrating: Investigating and Escalating
  5. Report from Malware Analyst
  6. Exercise 1.1: Exploring Suspicious Executable Detected using SIEM
  7. Exercise 1.2: Investigating Multiple Failed Logins using SIEM
  8. Exercise 3: Mitigating Risk
  9. Exercise 4.1: Asking the Right Questions
  10. Scenario 4.1: Asking the Right Questions
  11. Scenario 4.2: Suspicious or Malicious?
  12. Exercise 4.2: Reviewing the Shift Log
  13. Exercise 4.3: Investigating an Unauthorized Login Attempt
  14. Exercise 4.4: Investigating Firewall Traffic
  15. Exercise 4.5: Reviewing the Security Operations Mailbox
  16. Exercise 5.1: Reviewing New Intelligence
  17. Exercise 5.2: Assessing Threat Severity
  18. Exercise 6: Recommending Remediation
  19. Exercise 7: Conducting a Post-Incident Review
  20. Exercise 8: Communicating with Operations and Senior Management
  21. Business Continuity
    Business Continuity Plan Development
    8 Topics
  22. BCP Invocation Process
    2 Topics
  23. Emergency Procedures
    7 Topics
  24. Crisis Management Team
    10 Topics
  25. BCP Seating Plan
  26. Overview
  27. Disaster Recovery
    Scope of Critical Services
  28. Network Services
  29. Application Hosting Service
  30. File Hosting Services
  31. Call Centre and Voice Recording Services
  32. Regulatory Links
  33. Thin Client Environment
  34. Voice System (Non-Service Desk)
  35. Printing Services
  36. Recovery Time Objective (RTO) & Recovery Point Objective
  37. Single Point of Failure
  38. Redundancy Requirements
  39. Alternate Locations
  40. Contact Protocol
    4 Topics
Lesson 21 of 40
In Progress

Business Continuity Plan Development

This document aims at providing a governance framework for management of any business disruption, as well as the timely and orderly restoration of business activities upon the occurrence of an adverse event, whether natural or man-made.

Business Continuity Plan sets forth standard methodology for development and documentation of a Business Continuity Plan applicable to all business sectors, functional departments and branches.

This procedure provides guidelines to business owners for risk assessment, analysis and mitigation to enable development of crisis preparedness plan in line with applicable laws and regulations.

Main priority is always to provide for protection of life and property. Once this is accomplished, the continuation of the business operation in a timely enough manner for satisfaction of business requirements becomes the primary objective.

The BCP plan covers three stages:

  1. Business Preparedness
  2. Business Continuity
  3. Business Steady State Recovery

Any Business Continuity Plan should be read in conjunction with the following integral constituent parts:

  • Business Impact Analysis “BIA”
    • Business Recovery Plans “BRP” of critical functions and branches
    • Data Recovery Plan “DRP”
    • System Contingency Plan
    • Call Tree and related Procedure
    • Alternative Locations
    • Accommodation Plans
    • Security Equipment
    • Vendor’s List including corresponding SLAs

Business Sector Coordinators should work closely with the Country BCP Coordinator for development of a Business Continuity Plan covering the following processes:

  • Continuity process, which focuses on continuity of critical functions only for a short term from the alternative location and the recovery process.
  • Recovery process, focusing on resuming all business functions and restoration to business as usual “BAU”.

Priorities for preparation of the business plan should be considered according to the following sequence:

  • Providing for the safety of employees and property
    • Compliance with laws and CBE regulations
    • Risk analysis of the business impacts of adverse events

Each plan should cover handling of business activities, processes and sub-processes throughout the following stages:

A. Business Preparedness:

  1. Business Impact Analysis “BIA” (template and guidelines attached Appendix 6)
    1. Business Recovery Plan “BRP” (template and guidelines attached Appendix 1)
    1. Call Tree (template and procedures attached Appendix 2)
    1. Alternative Locations
  • Business Continuity:
  • Business Steady State Recovery
    • Gap analysis and corrective action plan
    • Reporting

The plan should also consider required action in case of event occurrence during / after working hours and depending on expected outage duration, whether short term or extended period.