CYB-515- Benchmark - Business Continuity Plan (BCP) – Phase 1

docx

School

Grand Canyon University *

*We aren’t endorsed by this school

Course

515

Subject

Information Systems

Date

Apr 3, 2024

Type

docx

Pages

8

Uploaded by JusticeFogTurtle567

Report
Dorita Adams Business Continuity Plan Phase. 1 CYB-515 Enterprise Security and Infrastructure Design March 19, 2024
Executive Overview This strategy aims to outline a roadmap for the swift restoration of normal operations at Rising Phoenix Education following any disruption of services. As per guidelines from the United States Department of Homeland Security, an effective business continuity strategy should consist of four main phases: (1) assessing the business impact, (2) devising recovery tactics, (3) creating the plan, and (4) conducting tests. Crafting a comprehensive business continuity strategy reduces the downtime an organization faces due to unexpected events. This document will detail potential risks faced by the organization and the optimal responses to these scenarios, with a keen emphasis on two fundamental goals. The foremost goal is ensuring the ongoing safety of our employees. The welfare of our team members is paramount, and under no circumstances will their safety be compromised for the sake of preserving company profits. The second goal focuses on safeguarding the organization's assets to ensure a smooth transition back to full operational capacity. These goals significantly influence the decision-making process in the ensuing plan.
Document Change Control Change is a fundamental aspect of both human behavior and business operations. The outcome of change, whether positive or negative, often hinges on the level of planning and consideration that precedes the decision to make a change. Implementing effective document change control processes can lessen business interruptions, optimize resource utilization in a cost- efficient manner, and decrease the chance of reverting to the way things were done before the change (United States Department of Homeland Security, n.d.). Establishing a system to record every change request to standard operations diminishes the risk of squandering resources on superfluous materials and executing poorly considered plans before they undergo thorough evaluation. Below is a proposed template for submitting a change request.
Your preview ends here
Eager to read complete document? Join bartleby learn and gain access to the full version
  • Access to all documents
  • Unlimited textbook solutions
  • 24/7 expert homework help
Introduction and Overview This business continuity plan aims to establish a framework for resuming standard operations following an unexpected interruption of company activities. To support this aim, the plan will be regularly updated and undergo a compulsory annual review to verify its relevance and effectiveness for the organization. Given the prevalence of natural disasters like floods and tropical storms in Yuma, Arizona, along with the potential for man-made hazards such as viruses or scams, the paramount strategy for safeguarding the company's future is a commitment to being prepared. Scope and Applicability A comprehensive business continuity plan must encompass the entire organization, rather than concentrating on a single facet. It is essential to consider all assets—digital, physical, and human resources —within the scope of the plan. This document is designed to cover the full spectrum of the organization, addressing all manner of disasters and potential threats. The existing version of the business continuity plan will remain active and be deployed in emergencies until a new version is developed and replaces it . Objective This plan prioritizes, above all, the safety of students and staff at Rising Phoenix Education, followed closely by the goal to swiftly resume educational activities. These principal objectives cover all other aims detailed in the plan, which include safeguarding the private data and information of students and staff, achieving educational benchmarks as set by state standards, among others. Assumptions Based on the goals and the detailed strategy, it's anticipated that: The safety of all students and staff will be ensured, facilitating a rapid restoration of standard operations.
Data backups will be maintained and accessible to support the resumption of normal activities, with the latest backup being utilized in accordance with established procedures. Any identified risks to the personal data of students or staff, including tax information and social security numbers, will prompt immediate notification to the affected parties. Normal school functions will continue throughout and following any threats, ensuring the needs of Rising Phoenix Education's students are met efficiently. Risk Assessment Matrix Severity (X-axis): Minor: Possible minor damage to the business and its employees. Moderate: Possible risks to the business and its staff. Major: Possible significant damage to the business and fatal risks to staff. Likelihood (Y-axis): Rare: Once a year. Uncommon: Once a month. Common: Once a week. Green: (2-3) Low Damage Yellow: (4) Medium Damage Red: (5-6) High Damage Flu Likelihood: 3 Severity: (Based on the extent of the disease's spread) approx. 1-2 Risk Ranking: approx. 4-5 1 (Minor) 2 (Moderate) 3 (Severe) 1 (Rare) 2 3 4 2 (Uncommon) 3 4 5 3 (Common) 4 5 6
Risk Impact: $326.70-$457.38 per student. With an average funding of $11,672 per student per year in the United States and a 180- day academic year, schools receive approximately $65.34 in federal funding daily for each student. Harvard Health Publishing notes that the flu usually lasts from 5 to 7 days. Hurricane Likelihood: 1 Severity: 3 Risk Ranking: 4 Risk Impact: approx. $8,000,000 Phishing Scam Likelihood: 1 Severity: 2 Risk Ranking: 3 Risk Impact: Compromise of student information and possible breach of FERPA regulations. Ransomware Attack: Likelihood: 2 Severity: 3 Risk Ranking: 5 Risk Impact: Failure to finish tasks and ongoing financial loss dictated by the ransom demand.
Your preview ends here
Eager to read complete document? Join bartleby learn and gain access to the full version
  • Access to all documents
  • Unlimited textbook solutions
  • 24/7 expert homework help
Critical Business Function Overview At Rising Phoenix Education, essential business functions are designated by the administration as crucial for fulfilling all the objectives previously outlined. These will be executed through a five-step process: Planning/Practice/Preparedness This phase involves educating both new and existing staff members on emergency response procedures as detailed in this plan. Furthermore, it guarantees that the business continuity plan is consistently revised and ready for execution. Disaster Strikes In the event of a disaster, the situation is assessed and evaluated. Activate Plan Upon disaster occurrence, the business continuity plan is initiated, prompting staff to commence their designated tasks as per their training. Data is closely monitored, and repair efforts are launched to secure data integrity. In instances of data breaches or theft, the affected parties are promptly informed. Backups Digital backups are deployed, facilitating the recovery of any lost or compromised data. Concurrently, any physical damage is assessed and addressed. Full Operation Rising Phoenix Education returns to full operational capacity, with all departments resuming their functions at normal efficiency levels.
References Davis, Jackie. (March 14, 2020). K-12 Students Targets of Phishing Threats: Here’s What to Watch Out For Retrieved from https://todaysmoderneducator.com/2020/03/24/k-12-students-targets-for-phishing- threats-heres-what-to-watch-out-for/ Emist. (n.d.) Absenteeism in Schools: $10.7 Loss in Funding Retrieved from https://emist.com/absenteeism-in-schools-10-7-billion-loss-in- funding/#:~:text=Assuming%20a%20180%20day%20school,billion%20dollars %20in%20the%20US . Guardian. (n.d.) Construction Costs Estimates for an Elementary School in National US Retrieved from https:// www.rsmeans.com/model-pages/elementary-school Harvard Health Publishing. (October 1, 2020) How long does the flu last? Retrieved from https:// www.health.harvard.edu/staying-healthy/how-long-does-the-flu-last NIBusiness. (n.d.) Change Management Retrieved from https:// www.nibusinessinfo.co.uk/content/importance-change-management- business-continuity U.S. Department of Education. (n.d.) Chronic Absenteeism In the Nation’s Schools Retrieved from https://www2.ed.gov/datastory/chronicabsenteeism.html U.S. Department of Homeland Security. (n.d.) Business Continuity Plan Retrieved from https:// www.ready.gov/business-continuity-plan

Related Documents

Chapter 3 - Risk Management and Internal Controls - Student.docx
Ethical Hacking-Assignment 13.docx
IDS 402 7-1 Final Project Physical Fitness.docx
Sp24_Assignment4_Solution.docx
IDS 402 6-2 Activity Reflection Society.docx
Ethical Hacking-Assignment 14.docx
Topic 5- Application_of_Security_Principles_Presentation.pptx
CYB 515- Principles of Cybersecurity Reference Guide.docx
Customer interviews team submission - assignment template (2).docx
mccaffery_a24.docx
Touchstone Task 2.1_ Planning Network Printer Connectivity Questions.docx
Touchstone Task 2.2_ Planning IP Address Assignments Questions.docx