Compose an enterprise security plan consisting of an incident response plan, disaster recovery plan, and business continuity
Question:
Compose an enterprise security plan consisting of an incident response plan, disaster recovery plan, and business continuity plan for the following company.
ACME Corp is a federal contractor that installs, maintains, and secures all information assets for multiple agencies in the U.S. and in the European Union. The federal government is requesting the company to come up with an Enterprise Security Management Plan that encompasses incident response, disaster recovery, and business continuity planning.
The federal government agencies use a wide variety of new and legacy multi-platform systems, some of which are hosted by Microsoft Azure. This includes but is not limited to:
- Windows Server 2000 through Current using Active Directory Domain Services for security domain management such as user management, etc.
- Microsoft Azure for managing the storing, and access of data
- Linux kernel 2.6 through Current running in Red Hat Enterprise Linux (Server Edition being used as Firewalls and Application Layer Proxies)
- Smartphones using the Android Platform
- Cisco Routers and Switches using Cisco's IOS Platform
ACME has indicated it would be open to additional hardware and/or roles for system components to facilitate security management, as well as other location necessities.Justification will be needed.
Their staff is as follows:
- CEO
- CIO/CISO
- Security Managers
- Security Technicians
- IT Managers/System Administrators/Network Administrators
- IT Technicians
create the Enterprise Security Management Plan containing IR, DR, and BCP.
Management Information Systems Managing the Digital Firm
ISBN: 978-0133050691
13th edition
Authors: Ken Laudon, Jane P. Laudon