IT Service Continuity with IT Governance Frameworks

User Generated

terraonol

Computer Science

Description

Integrating Disaster Recovery / IT Service Continuity with IT Governance Frameworks

Unformatted Attachment Preview

https://www.pmi.org/about/learn-about-pmi/what-is-project-management http://csrc.nist.gov/publications/nistir/ir7359/CSD_ExecGuide-booklet.pdf http://www.isaca.org/Knowledge-Center/Research/Documents/AligningCOBIT-ITIL-V3-ISO27002-for-Business-Benefit_res_Eng_1108.pdf https://www.csoonline.com/article/2838371/security-leadership/theevolution-of-the-ciso-role-and-organizational-readiness.html https://cisohandbook.com/security-education/project-manager-security/ https://www.csoonline.com/article/2124114/it-strategy/strategic-planningerm-how-to-write-an-information-security-policy.html https://danielmiessler.com/study/information-securitymetrics/#gs.vWuZwG8 http://www.mckinsey.com/business-functions/digital-mckinsey/ourinsights/how-good-is-your-cyberincident-response-plan https://www.isaca.org/Journal/archives/2012/Volume-6/Documents/jol12v6A-Strategic.pdf CSIA 350: Cybersecurity in Business & Industry Case Study #2: Integrating Disaster Recovery / IT Service Continuity with Information Technology Governance Frameworks Case Scenario: You have been assigned to a large, cross-functional team which is investigating adopting a new governance framework for your company’s Information Technology governance program. Your first assignment as a member of this team is to research and write a 2 to 3 page white paper which discusses one of the Chief Information Security Officer (CISO) functional areas. The purpose of this white paper is to “fill in the gaps” for team members from other areas of the company who are not familiar with the functions and responsibilities of the Office of the Chief Information Security Officer. Your assigned CISO functional area is: Disaster Recovery / IT Service Continuity (IT Service Continuity is a subset of Business Continuity). Your white paper must address the planning, implementation, and execution aspects of this CISO functional area. Your audience will be familiar with the general requirements for business continuity planning (BCP), business impact analysis (BIA), and continuity/recovery strategies for business operations (e.g. restore in place, alternate worksite, etc.). Your readers will NOT have in-depth knowledge of the requirements / implementation strategies which are specific to restoring IT services which support the critical functions of the business (as identified in a BIA). Note: in your Critical Analyses and Discussion for this case study you will address specific aspects of a governance framework, e.g. COBIT®, ITIL®, or ISO/IEC 27002, which apply to planning and implementation of disaster recovery / IT Service Continuity. Research: 1. Read / Review the Week 3 readings: 2. Find three or more additional sources which provide information about best practices for IT Service Continuity / Disaster Recovery planning, implementation, and execution. (Hint: begin by exploring http://www.ready.gov/business ) For the purposes of this assignment, implementation means the advance work necessary to implement recovery plans by acquiring or contracting for products, services, infrastructures, and facilities. Execution means activating the DR/BCP plans and overseeing the recovery operations. Write: Using standard terminology (see case study #1), write a two to three page summary of your research. At a minimum, your summary must include the following: 1. An introduction or overview of disaster recovery / IT Service Continuity which provides definitions and addresses the reasons why cybersecurity should be specifically addressed in the company’s DR/BCP strategies and plans. This introduction should be suitable for an executive audience. Copyright ©2017 by University of Maryland University College. All Rights Reserved CSIA 350: Cybersecurity in Business & Industry 2. A separate section which addresses the CISO & CISO staff roles and responsibilities during the planning phase of DR/BCP and IT Service Continuity. This section should include identification and discussion of best practices for addressing cybersecurity objectives in the planning process. 3. A separate section which addresses the CISO & CISO staff roles and responsibilities during the implementation phase of DR/BCP and IT Service Continuity. This section should include identification and discussion of best practices for ensuring that cybersecurity objectives are met during the implementation phase. The implementation phase includes such activities as acquisition and contracting. 4. A separate section which addresses the CISO & CISO staff roles and responsibilities during the execution phase of DR/BCP and IT Service Continuity. This section should include identification and discussion of best practices for ensuring cybersecurity objectives are met during the execution phase. The execution phase includes such activities as activating the DR/BCP or IT Service Continuity plan(s) and overseeing recovery operations. 5. A closing section that provides a summary of the issues and recommendations regarding inclusion of Cybersecurity considerations in the company’s DR/BCP strategies and plans. Submit For Grading & Discussion Submit your case study in MS Word format (.docx or .doc file) using the Case Study #2 Assignment in your assignment folder. (Attach the file.) Formatting Instructions Use standard APA formatting for the MS Word document that you submit to your assignment folder. Formatting requirements and examples are found under Course Resources > APA Resources. Additional Information You are expected to write grammatically correct English in every assignment that you submit for grading. Do not turn in any work without (a) using spell check, (b) using grammar check, (c) verifying that your punctuation is correct and (d) reviewing your work for correct word usage and correctly structured sentences and paragraphs. You are expected to credit your sources using in-text citations and reference list entries. Both your citations and your reference list entries must comply with APA 6th edition Style requirements. Failure to credit your sources will result in penalties as provided for under the university’s Academic Integrity policy. Copyright ©2017 by University of Maryland University College. All Rights Reserved
Purchase answer to see full attachment
User generated content is uploaded by users for the purposes of learning and should be used following Studypool's honor code & terms of service.

Explanation & Answer

Please let me know if there is anything needs to be changed or added. I will be also appreciated that you can let me know if there is any problem or you have not received the work Good luck in your study and if you need any further help in your assignments, please let me know Can you please confirm if you have received the work? Once again, thanks for allowing me to help you R MESSAGE TO STUDYPOOL NO OUTLINE IS NEEDED AS IT IS A case study COMPLETED 100% PLAG CHECK .. REPORT ATTACHED GRAMMAR CHECKED - USING GRAMMARLY CITATION AND REFERENCES ACCORDING TO INSTRUCTION

Running head: IT GOVERNANCE FRAMEWORK

I.T GOVERNANCE FRAMEWORK
NAME:
SCHOOL:
DATE:

1

IT GOVERNANCE FRAMEWORK

2

Introduction
Disaster recovery comprises of procedures in which a company or organization follows in order
to resume its operation after a disaster occurs. This always takes place after an incident occurs.
The respond time for disaster recovery varies from days to months depending on the extent of the
disaster (Oslund, 2013). I.T service continuity refers to the procedures and process in which an
organization should implement ...


Anonymous
I was struggling with this subject, and this helped me a ton!

Studypool
4.7
Trustpilot
4.5
Sitejabber
4.4

Related Tags