Disaster Planning
Business Continuity Template
Join Our Email List
Email:
News
Below are the top 5 stories from the Active News Feeds created by Janco Associates for issues on disaster planning and business continuity
Top Disaster Planning Stories
- IRS Systems Lack DRP and Security
An audit report of IRS systems states that the IRS fails to implement systems with adequate security built in. Since 1997, the IRS has designated computer security as a material weakness. The IRS continues to struggle with addressing security vulnerabilities on its modernized systems. Until security control vulnerabilities are corrected, the IRS is jeopardizing the confidentiality, integrity, and availability of the massive volume of taxpayer data processed and stored by the IRS.The IRS deployed two new systems with known security vulnerabilities relating to the protection of sensitive data, system access, monitoring of system access, and disaster recovery. These vulnerabilities increase the risks that
- An unscrupulous person, with little chance of detection, could gain unauthorized access to the vast amount of taxpayer information the IRS processes, and
- The systems could not be recovered effectively and efficiently during an emergency.
The IRS' processes for ensuring that security controls are implemented before systems are deployed failed because the IRS did not consider the known security vulnerabilities to be significant, which affected vulnerability resolution and system deployment decisions.
The Customer Service Executive Steering Committee, which had final milestone approval;
- Did not provide sufficient oversight to ensure that security controls were implemented, and
- Signed off project milestones despite the existence of weaknesses repeatedly reported to the Committee.
In addition the IRS' accepted major risks for these security vulnerabilities, including the inabilities to successfully recover the systems and their data in the event of a disaster and to detect malicious security events and unauthorized accesses to taxpayer data.
To see the report go to (http://www.treas.gov/tigta/auditreports/2008reports/200820163fr.pdf).
more information
- Disaster Recovery / Business Continuity is the International Standard
Disaster Recovery Business Continuity Template in WORD 2003 and WORD 2007 (Office 2003 and Office 2007) FormatsPark City, UT The Disaster Recovery Business Continuity template has been sold to enterprise in over 65 countries around the globe. With the release a of version 4.4 of the template it is in complete compliance with Sarbanes-Oxley, HIPAA, ITIL (Ver 3), ISO 17799, and PCI DSS.
M V Janulaitis the CEO of Janco said, "Our DRP /BCP Template has been accepted by enterprise around the globe as the standard for disaster recovery plan and business continuity plan creation." In response to that need Janco has updated its "Disaster Recovery / Business Continuity Template" by increasing the content of the template as well as updating the entire document to be compliant with Sarbanes-Oxley, HIPAA, ITIL (Ver. 3), ISO 17799, and PCI DSS.The Disaster Recovery Business Continuity Plan has been purchased for use in over 65 countries around the globe including:
- Angola
- Australia
- Austria
- Bahamas
- Barbados
- Belgium
- Belize
- Bermuda
- Brazil
- Bulgaria
- Canada
- Cayman Islands
- Columbia
- Croatia
- Czech Republic
- Denmark
- Egypt
- Finland
- France
- Germany
- Greece
- Honduras
- Hungary
- Iceland
- India
- Indonesia
- Israel
- Italy
- Jamaica
- Japan
- Jordan
- Kenya
- Lebanon
- Lithuania
- Macao
- Malta
- Mexico
- Mozambique
- Namibia
- Netherlands
- New Zealand
- Nigeria
- Norway
- Panama
- Philippines
- Poland
- Portugal
- Puerto Rico
- Qatar
- Republic of Ireland
- Romania
- Russia
- Saudi Arabia
- Singapore
- South Africa
- South Korea
- Spain
- Sri Lanka
- Swaziland
- Switzerland
- Taiwan
- Thailand
- Trinidad & Tobago
- Uganda
- United Kingdom
- United States
- Venezuela
- Zambia
The Disaster Recovery Business Continuity Plan has been purchased for use in government, public, and private enterprises in almost all industries including:
- Federal Government
- State Governments
- Local Governments
- Law Firms
- Think Tanks
- Chemical
- Telecommunication
- Real Estate
- Manufacturing
- Universities
- School Districts
- Consulting Firms
- Banks
- Financial Service
- Investment Banks
- Credit Unions
- Outsourcers
- Property Mgt
- Heavy Industry
- Light Industry
- Distribution
- Retail
- Hospitality
- Energy
- Insurance
- Medical
- ISPs
- Application Development
- Construction
- Graphics
- Entertainment
- Paper Products
- Defense
- Aerospace
- Media
more information
- Safeguarding Portable Media
Sarbanes-Oxley and HIPAA may not regulate the removal of information from corporate domains. But a growing number of states are passing data breach notification laws. As more and more corporate information gets loaded onto removable devices such as MP3 players, iPods, and even cell phones, should companies take measures to restrict the removal of such data? One solution is to mandate encryption of data loaded onto mobile devices.
more information
- New Disaster Recovery Audit Program Released
The Disaster Recovery / Business Continuity Audit program identifies control objectives that are meet by the audit program. There are 36 specific items that the audit covers in the 11 page audit program. Included are references to specific Janco products that directly address the areas the audit covers.
This program can be used as standalone audit program or in concert with the following Janco offerings:
more information
- Centralized Back-up for DRP is an Issue
The need to be close to customers, manufacturing facilities and specialized labor have required organizations to extend the traditional concept of headquarters to offices and factories hundreds or even thousands of miles away. However, along with the opportunities that come with workforce globalization, come the realities of dealing with data that sprawls across the organization. Whether the data is at the Munich branch or at HQ in New York, it is equally susceptible to loss, requiring that data recovery and security plans apply to all parts of the organization, regardless of location.
To protect company data and ensure its availability to users, IT organizations have been conflicted between two backup approaches. The first approach, local tape backup, requires that tape libraries be present wherever there are servers in racks. Local area network (LAN) access to the servers gives administrators fast data backup and recovery. The newer approach, centralized backup, puts high-density tape libraries in one location to which data from servers around the world is backed up. While centralized backup requires less hardware, reduces administration time, and solves the security problem associated with loose tape media, it can introduce greater bandwidth consumption and longer backup/restore windows. Because of these issues, centralized backup has been a leap some managers have not been willing to make.
more information
News Feeds
The following are news feeds that you can subscribe to by just clicking on the link.
The focus of the feed is the management of technology in enterprises of all sizes.
The focus of the feed is the productivity of technology in enterprises of all sizes.
The focus of the feed is the management and staffing of the technology functions within enterprises of all sizes.
The focus of the feed is the management of information technology in enterprises of all sizes.