Anna Marie Corporation is developing a revised business continuity plan and disaster recovery plan for its headquarters facility and network of 16 branch offices. The said plans have not been updated in more than eight (8) years, during which time the organization has grown by over 300%. At the headquarters facility, there are approximately 750 employees. These individuals connect over a local area network (LAN) to an array of more than 60 applications, databases, and file print servers in the corporate data center and over a frame relay network to the branch offices. Traveling users access corporate systems remotely by connecting over the internet using a virtual private network (VPN). Users at both the headquarters and branch offices access the internet through a firewall and proxy server located in the data center. Critical applications have a recovery time objective (RTO) of between three (3) and five (5) days. Branch offices are located between 30 and 50 miles from one another, with none closer than 25 miles to the headquarters facility. Each branch office has between 20 and 35 employees plus a mail server and a file/print server. Backup media for the data center are stored at a third-party facility that is 35 miles away. Backups for servers located at the branch offices are stored at nearby branch offices using reciprocal agreements between offices. Current contracts with a third-party hot site provider include 25 servers, work area space equipped with desktop computers to accommodate 100 individuals, and a separate agreement to ship up to two servers and 10 desktop computers to any branch office declaring an emergency. The contract term is for three years, with equipment upgrades occurring at renewal time. The hot-site provider has multiple facilities throughout the country in case the primary facility is in use by another customer or rendered unavailable by the disaster. Senior management desires that any enhancements be as cost- effective as possible. Questions: 1. When negotiating new contracts with the vendor, what should the IS auditor recommend to management about the hot site in the above situation? 2. When negotiating new contracts with the vendor, what should the IS auditor recommend to the management about branch office recovery?

Database System Concepts
7th Edition
ISBN:9780078022159
Author:Abraham Silberschatz Professor, Henry F. Korth, S. Sudarshan
Publisher:Abraham Silberschatz Professor, Henry F. Korth, S. Sudarshan
Chapter1: Introduction
Section: Chapter Questions
Problem 1PE
icon
Related questions
Question
Anna Marie Corporation is developing a revised business continuity plan and disaster recovery plan for its
headquarters facility and network of 16 branch offices. The said plans have not been updated in more than
eight (8) years, during which time the organization has grown by over 300%. At the headquarters facility,
there are approximately 750 employees. These individuals connect over a local area network (LAN) to an
array of more than 60 applications, databases, and file print servers in the corporate data center and over
a frame relay network to the branch offices.
Traveling users access corporate systems remotely by connecting over the internet using a virtual private
network (VPN). Users at both the headquarters and branch offices access the internet through a firewall
and proxy server located in the data center. Critical applications have a recovery time objective (RTO) of
between three (3) and five (5) days.
Branch offices are located between 30 and 50 miles from one another, with none closer than 25 miles to
the headquarters facility. Each branch office has between 20 and 35 employees plus a mail server and a
file/print server. Backup media for the data center are stored at a third-party facility that is 35 miles away.
Backups for servers located at the branch offices are stored at nearby branch offices using reciprocal
agreements between offices. Current contracts with a third-party hot site provider include 25 servers, work
area space equipped with desktop computers to accommodate 100 individuals, and a separate agreement
to ship up to two servers and 10 desktop computers to any branch office declaring an emergency. The
contract term is for three years, with equipment upgrades occurring at renewal time. The hot-site provider
has multiple facilities throughout the country in case the primary facility is in use by another customer or
rendered unavailable by the disaster. Senior management desires that any enhancements be as cost-
effective as possible.
Questions:
1. When negotiating new contracts with the vendor, what should the IS auditor recommend to
management about the hot site in the above situation?
2. When negotiating new contracts with the vendor, what should the IS auditor recommend to the
management about branch office recovery?
Transcribed Image Text:Anna Marie Corporation is developing a revised business continuity plan and disaster recovery plan for its headquarters facility and network of 16 branch offices. The said plans have not been updated in more than eight (8) years, during which time the organization has grown by over 300%. At the headquarters facility, there are approximately 750 employees. These individuals connect over a local area network (LAN) to an array of more than 60 applications, databases, and file print servers in the corporate data center and over a frame relay network to the branch offices. Traveling users access corporate systems remotely by connecting over the internet using a virtual private network (VPN). Users at both the headquarters and branch offices access the internet through a firewall and proxy server located in the data center. Critical applications have a recovery time objective (RTO) of between three (3) and five (5) days. Branch offices are located between 30 and 50 miles from one another, with none closer than 25 miles to the headquarters facility. Each branch office has between 20 and 35 employees plus a mail server and a file/print server. Backup media for the data center are stored at a third-party facility that is 35 miles away. Backups for servers located at the branch offices are stored at nearby branch offices using reciprocal agreements between offices. Current contracts with a third-party hot site provider include 25 servers, work area space equipped with desktop computers to accommodate 100 individuals, and a separate agreement to ship up to two servers and 10 desktop computers to any branch office declaring an emergency. The contract term is for three years, with equipment upgrades occurring at renewal time. The hot-site provider has multiple facilities throughout the country in case the primary facility is in use by another customer or rendered unavailable by the disaster. Senior management desires that any enhancements be as cost- effective as possible. Questions: 1. When negotiating new contracts with the vendor, what should the IS auditor recommend to management about the hot site in the above situation? 2. When negotiating new contracts with the vendor, what should the IS auditor recommend to the management about branch office recovery?
Expert Solution
trending now

Trending now

This is a popular solution!

steps

Step by step

Solved in 2 steps

Blurred answer
Knowledge Booster
Risks related to security
Learn more about
Need a deep-dive on the concept behind this application? Look no further. Learn more about this topic, computer-science and related others by exploring similar questions and additional content below.
Similar questions
  • SEE MORE QUESTIONS
Recommended textbooks for you
Database System Concepts
Database System Concepts
Computer Science
ISBN:
9780078022159
Author:
Abraham Silberschatz Professor, Henry F. Korth, S. Sudarshan
Publisher:
McGraw-Hill Education
Starting Out with Python (4th Edition)
Starting Out with Python (4th Edition)
Computer Science
ISBN:
9780134444321
Author:
Tony Gaddis
Publisher:
PEARSON
Digital Fundamentals (11th Edition)
Digital Fundamentals (11th Edition)
Computer Science
ISBN:
9780132737968
Author:
Thomas L. Floyd
Publisher:
PEARSON
C How to Program (8th Edition)
C How to Program (8th Edition)
Computer Science
ISBN:
9780133976892
Author:
Paul J. Deitel, Harvey Deitel
Publisher:
PEARSON
Database Systems: Design, Implementation, & Manag…
Database Systems: Design, Implementation, & Manag…
Computer Science
ISBN:
9781337627900
Author:
Carlos Coronel, Steven Morris
Publisher:
Cengage Learning
Programmable Logic Controllers
Programmable Logic Controllers
Computer Science
ISBN:
9780073373843
Author:
Frank D. Petruzella
Publisher:
McGraw-Hill Education