0% found this document useful (0 votes)

2 views

Chapter 2_summary

Chapter 2 discusses the importance of Incident Response (IR), Business Continuity (BC), and Disaster Recovery (DR) plans in maintaining business operations during crises. It outlines the distinct roles of each plan, with IR focusing on immediate response to incidents, BC ensuring ongoing operations, and DR restoring normalcy after failures. Key components and models for each plan are detailed to emphasize their necessity for organizational survival in abnormal conditions.

Uploaded by

SayuriAlexandraHerenciaMonrroy

Available Formats

Download as PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

2 views

Chapter 2_summary

Uploaded by

SayuriAlexandraHerenciaMonrroy

Available Formats

Download as PDF, TXT or read online on Scribd

You are on page 1/ 4

Chapter 2

Incident Response (IR),

Business Continuity (BC)

and Disaster Recovery (DR)

Domain Summary
This domain focused mainly on the availability part of the CIA triad and the importance of

maintaining availability for business operations. Maintaining business operations during or

after an incident, event, breach, intrusion, exploit or zero day is accomplished through the

implementation of Incident Response (IR), Business Continuity (BC), and/or Disaster

Recovery (DR) plans. While these three plans may seem to overlap in scope, they are three

distinct plans that are vital to the survival of any organization facing out of the ordinary

operating conditions. Here are the primary things to remember from this domain:

First, the Incident Response plan responds to abnormal operating conditions to keep the
business operating. The four main components of Incident Response are: Preparation;
Detection and Analysis; Containment, Eradication and Recovery; and Post-Incident Activity.
Incident Response teams are typically a cross-functional group of individuals who represent the
management, technical and functional areas of responsibility most directly impacted by a
security incident. The team is trained on incident response and the organization’s incident
response plan. When an incident occurs, the team is responsible for determining the amount
and scope of damage and whether any confidential information was compromised,
implementing recovery procedures to restore security and recover from incident-related
damage, and supervising implementation of future measures to improve
security and prevent recurrence of the incident.

Second, the Business Continuity plan is designed to keep the organization operating through

the crisis. Components of the Business Continuity plan include details about how and when

to enact the plan and notification systems and call trees for alerting the team members and
organizational associates that the plan has been enacted. In addition, it includes contact
numbers for contacting critical third-party partners, external emergency providers, vendors

and customers. The plan provides the team with immediate response procedures and

checklists and guidance for management.

Finally, if both the Incident Response and Business Continuity plans fail, the Disaster
Recovery plan is activated to return operations to normal as quickly as possible. The Disaster
Recovery plan may include the following components: executive summary providing a high-
level overview of the plan, department-specific plans, technical guides for IT personnel
responsible for implementing and maintaining critical backup systems, full copies of the plan
for critical disaster recovery team members, and checklists for certain individuals.

Module 1: Understand Incident Response (IR

Incident Response Terminology:

• Breach
• Event

• Exploit

• Incident
• Intrusion

• Threat

• Vulnerability
• Zero Day

Four Main Components of Incident Response are:

• Preparation

• Detection and Analysis

• Containment, Eradication and Recovery

• Post-Incident Activity

Three Possible Models for an Incident Response Team (IRT):

• Leveraged
• Dedicated

• Hybrid

Module 2: Understand Business Continuity (BC)

Components of a Business Continuity (BC) Plan include:

• List of the BCP team members, including multiple contact methods and backup

members

• Immediate response procedures and checklists (security and safety procedures, fire

suppression procedures, notification of appropriate emergency-response agencies,

etc.)
• Notification systems and call trees for alerting personnel that the BCP is being enacted

• Guidance for management, including designation of authority for specific managers

• How/when to enact the plan

• Contact numbers for critical members of the supply chain (vendors, customers,

possible external emergency providers, third-party partners)

• How/when to enact the plan

• Contact numbers for critical members of the supply chain (vendors, customers,

possible external emergency providers, third-party partners)

Module 3: Understand Disaster Recovery (DR)

Five Possible Components to Include in a Disaster Recovery (DR) Plan:

1. Executive summary providing a high-level overview of the plan

2. Department-specific plans

3. Technical guides for IT personnel responsible for implementing and maintaining critical

backup systems

4. Full copies of the plan for critical disaster recovery team members

5. Checklists for certain individuals

Lecture 8 - DRP
50% (2)
Lecture 8 - DRP
40 pages
Disaster Recovery Drill
100% (4)
Disaster Recovery Drill
12 pages
ISC2 2 Incident Response, Business Continuity and Disaster Recovery Concepts
100% (1)
ISC2 2 Incident Response, Business Continuity and Disaster Recovery Concepts
13 pages
Inputs Process Output: Conceptual Framework
100% (2)
Inputs Process Output: Conceptual Framework
2 pages
Segment Routing Fundamentals26
100% (1)
Segment Routing Fundamentals26
350 pages
BCG Matrix PPT of Apple
50% (2)
BCG Matrix PPT of Apple
15 pages
Continuity Strategies
No ratings yet
Continuity Strategies
5 pages
CC7178 Cyber Security Management: Presenter: Kiran Kumar Shah
No ratings yet
CC7178 Cyber Security Management: Presenter: Kiran Kumar Shah
21 pages
L2 Incident Response
No ratings yet
L2 Incident Response
9 pages
L2.IncidentResponse.BusinessContinuity
No ratings yet
L2.IncidentResponse.BusinessContinuity
6 pages
Disaster Recovery
No ratings yet
Disaster Recovery
6 pages
BCP PDF
No ratings yet
BCP PDF
3 pages
Business Continuity in Action
No ratings yet
Business Continuity in Action
59 pages
Isc Chapter 2
No ratings yet
Isc Chapter 2
19 pages
Risk Assessment Matrix (RAM) Process: Michigan State University Critical Incident Protocol School of Criminal Justice
No ratings yet
Risk Assessment Matrix (RAM) Process: Michigan State University Critical Incident Protocol School of Criminal Justice
9 pages
DR Interview Questions
No ratings yet
DR Interview Questions
25 pages
Business Recovery Plan - BCMMetrics - V4
No ratings yet
Business Recovery Plan - BCMMetrics - V4
11 pages
Disaster Recovery Plan Last
100% (1)
Disaster Recovery Plan Last
13 pages
Disaster Recovery Plan
No ratings yet
Disaster Recovery Plan
17 pages
Clear Your Knowledge On IRP DRP BCP
No ratings yet
Clear Your Knowledge On IRP DRP BCP
5 pages
CC Domain2
No ratings yet
CC Domain2
45 pages
Domain2
No ratings yet
Domain2
4 pages
Risk Assessment Matrix Process
No ratings yet
Risk Assessment Matrix Process
7 pages
Day 6
No ratings yet
Day 6
27 pages
6 BCP-DCP
No ratings yet
6 BCP-DCP
19 pages
Business Continuity Management Preparing Your Business For Emergencies
No ratings yet
Business Continuity Management Preparing Your Business For Emergencies
6 pages
Business Continuity Management 2024
No ratings yet
Business Continuity Management 2024
6 pages
Assignment 1 Bus Con12
No ratings yet
Assignment 1 Bus Con12
14 pages
Essential Elements For An Effective Crisis Management Plan
No ratings yet
Essential Elements For An Effective Crisis Management Plan
3 pages
Chapter 4 Sim
No ratings yet
Chapter 4 Sim
11 pages
Business Resumption Plan
No ratings yet
Business Resumption Plan
7 pages
The Overall Planning For Unexpected Events Is Contingency Planning (CP), Explain THREE (3) Components of Contingency Planning With Action Plan
No ratings yet
The Overall Planning For Unexpected Events Is Contingency Planning (CP), Explain THREE (3) Components of Contingency Planning With Action Plan
2 pages
SGRC UNIT-5
No ratings yet
SGRC UNIT-5
6 pages
Corp Crisis MGMT
No ratings yet
Corp Crisis MGMT
6 pages
Contingency Plan Policy
No ratings yet
Contingency Plan Policy
4 pages
Chapter 4 Notes
No ratings yet
Chapter 4 Notes
8 pages
Contingency Plan Manual
No ratings yet
Contingency Plan Manual
30 pages
Business Continuity: The Ultimate Guide To
No ratings yet
Business Continuity: The Ultimate Guide To
35 pages
Group Project Ideas
No ratings yet
Group Project Ideas
2 pages
Incident Management
100% (1)
Incident Management
18 pages
Contingency Plan Template 04
100% (1)
Contingency Plan Template 04
21 pages
Group3
No ratings yet
Group3
12 pages
Information Security Management: Planning For Contingencies
No ratings yet
Information Security Management: Planning For Contingencies
49 pages
Basic Disaster Recovery Plan - Template
100% (2)
Basic Disaster Recovery Plan - Template
22 pages
5CAS: Client Administration and Support
No ratings yet
5CAS: Client Administration and Support
10 pages
Business Continuity Management
No ratings yet
Business Continuity Management
5 pages
Business Continuity Planning
No ratings yet
Business Continuity Planning
8 pages
Emergency Plan Guidelines (for project)
No ratings yet
Emergency Plan Guidelines (for project)
5 pages
Primer On Contingency Planning
No ratings yet
Primer On Contingency Planning
6 pages
Lecture5 Contingency Planning PDF
No ratings yet
Lecture5 Contingency Planning PDF
42 pages
Contingency Planning
No ratings yet
Contingency Planning
6 pages
Cisa Module 4 Part B - Business Resilience
No ratings yet
Cisa Module 4 Part B - Business Resilience
31 pages
Business Continuity Planning
No ratings yet
Business Continuity Planning
9 pages
Bit 2119
No ratings yet
Bit 2119
2 pages
Business Continuity and Disaster Recovery: JUNE 1, 2018
No ratings yet
Business Continuity and Disaster Recovery: JUNE 1, 2018
13 pages
Business Continuity Planning (BCP) : How To Preserve Critical Business Functions in The Face of A Disaster
No ratings yet
Business Continuity Planning (BCP) : How To Preserve Critical Business Functions in The Face of A Disaster
6 pages
Incident Response, BC, and DR Concepts
No ratings yet
Incident Response, BC, and DR Concepts
29 pages
Principles of Information Security 7E - Module 5
No ratings yet
Principles of Information Security 7E - Module 5
48 pages
Disaster Recovery Plan What Is A Disaster Recovery Plan?
No ratings yet
Disaster Recovery Plan What Is A Disaster Recovery Plan?
4 pages
Techrepublic Resource Guide: Disaster Planning and Recovery
No ratings yet
Techrepublic Resource Guide: Disaster Planning and Recovery
16 pages
CompTia 701: Navigating the Risk Management Landscape
From Everand
CompTia 701: Navigating the Risk Management Landscape
AS Snipes
No ratings yet
Business Continuity Strategies: Protecting Against Unplanned Disasters
From Everand
Business Continuity Strategies: Protecting Against Unplanned Disasters
Kenneth N. Myers
No ratings yet
Certified Cybersecurity Compliance Professional
From Everand
Certified Cybersecurity Compliance Professional
Dr. Zulk Shamsuddin
5/5 (5)
Row Part of Designation Reference Material Description Manufacturer
No ratings yet
Row Part of Designation Reference Material Description Manufacturer
1 page
Seminar Report Akanksha
No ratings yet
Seminar Report Akanksha
34 pages
BCA 1st YEAR Syllabus
No ratings yet
BCA 1st YEAR Syllabus
26 pages
Listening Project_question Type 1_ Pick From a List_student
No ratings yet
Listening Project_question Type 1_ Pick From a List_student
3 pages
Ass1 Merged Merged
No ratings yet
Ass1 Merged Merged
19 pages
Wintronic Computers Store SecuritySurveillance Spy Security Cameras IPWireless Cameras Cisco Linksys WVC80N Inter
No ratings yet
Wintronic Computers Store SecuritySurveillance Spy Security Cameras IPWireless Cameras Cisco Linksys WVC80N Inter
1 page
MTech Front Pages Sample
No ratings yet
MTech Front Pages Sample
9 pages
Data Structures Algorithms - Lecture 15 16 17 - Array Data Structure
No ratings yet
Data Structures Algorithms - Lecture 15 16 17 - Array Data Structure
79 pages
Last Name: Job You'Re Looking For
No ratings yet
Last Name: Job You'Re Looking For
1 page
11-4 Multiplying Dividing Radical Expressions
No ratings yet
11-4 Multiplying Dividing Radical Expressions
29 pages
Aws Global Infrastructure Slides
No ratings yet
Aws Global Infrastructure Slides
30 pages
Nonlinear Feedback Control FOR Operating A Nonisothermal CSTR Near An Unstable Steady State
No ratings yet
Nonlinear Feedback Control FOR Operating A Nonisothermal CSTR Near An Unstable Steady State
8 pages
DSY - SEM-III - Syllabus 2021-2022 - Comp - Engg
No ratings yet
DSY - SEM-III - Syllabus 2021-2022 - Comp - Engg
25 pages
Test Questions
No ratings yet
Test Questions
3 pages
mighty-mariner-installation-guide-rev-2-(2012) (1)
No ratings yet
mighty-mariner-installation-guide-rev-2-(2012) (1)
63 pages
VN Video Editor Mod Apk
No ratings yet
VN Video Editor Mod Apk
3 pages
Print & Digital Media
No ratings yet
Print & Digital Media
29 pages
Responsibility Assignment Matrix Project Details: Project No: Date: Full Project Name: Project Manager
No ratings yet
Responsibility Assignment Matrix Project Details: Project No: Date: Full Project Name: Project Manager
6 pages
Hackers Presentation by Amran F Qasim
No ratings yet
Hackers Presentation by Amran F Qasim
10 pages
Wgs Classifieds 061114
No ratings yet
Wgs Classifieds 061114
7 pages
AOS Assignment 1: Features of Operating System (OS)
No ratings yet
AOS Assignment 1: Features of Operating System (OS)
3 pages
Wwi T2.2
No ratings yet
Wwi T2.2
6 pages
RTSP Vip Configuration Note Enus 9007200806939915
No ratings yet
RTSP Vip Configuration Note Enus 9007200806939915
21 pages
TLE Reviewer Fundamental
No ratings yet
TLE Reviewer Fundamental
1 page
4 CAD & FEA Unit 1 Part 4
No ratings yet
4 CAD & FEA Unit 1 Part 4
13 pages
Remote Panels RTAdv DOC en PDF
100% (1)
Remote Panels RTAdv DOC en PDF
25 pages
Sample Website Proposal
No ratings yet
Sample Website Proposal
13 pages