Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security CISSP-Discussion
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[CISSP-D] REVIEW: "A Primer for Disaster Recovery Planning in an IT Envi

from [Rob, grandpa of Ryan, Trevor, Devon & Hannah] Network Security [Permanent Link]
Subject: [CISSP-D] REVIEW: "A Primer for Disaster Recovery Planning in an IT Environment", Charlotte J. Hiatt
Date: Fri, 06 Oct 2006 12:02:18 -0800 
BKPDRPIT.RVW   20060823

"A Primer for Disaster Recovery Planning in an IT Environment",
Charlotte J. Hiatt, 2000, 1-878-28981-0
%A   Charlotte J. Hiatt
%C   1331 E. Chocolate Ave., Hershey, PA   17033-1117
%D   2000
%G   1-878-28981-0
%I   IRM Press/Idea Group
%O   800-345-432 717-533-8845 fax: 717-533-8661 cust@idea-group.com
%O  http://www.amazon.com/exec/obidos/ASIN/1878289810/robsladesinterne
  http://www.amazon.co.uk/exec/obidos/ASIN/1878289810/robsladesinte-21
%O   http://www.amazon.ca/exec/obidos/ASIN/1878289810/robsladesin03-20
%O   Audience a Tech 1 Writing 2 (see revfaq.htm for explanation)
%P   276 p.
%T   "A Primer for Disaster Recovery Planning in an IT Environment"

It is interesting to note that the introduction says nothing about the
purpose of the book (and does suggest that those planning for disaster
recovery can benefit from bringing in consultants).

There are several oddities in this work.  The chapters are not
numbered, and most are very short.  The Appendices (mostly forms) are
longer than the text of the book itself.

The chapters cover topics such as a definition of a disaster (which
doesn't define so much as lay out categories), examples of disasters,
statistics supporting the need for disaster planning, a recommendation
to obtain management support, a terse list of the composition of the
planning team, desirable characteristics of the team coordinator, risk
and business impact analysis (good as far as it goes, but fairly
standard), options for offsite data storage, and system recovery
options.  The book suggests evaluating alternatives for plan
development (including the aforementioned consultants) and defining
the assumptions and limits of the strategy.  (The components that go
into the written plan gets more space than the procedures for
emergency response.)  Emergency management, disaster recovery teams, a
notification directory, emergency operations centre, training,
testing, maintenance, invocation, and media management all get
relatively brief overviews.  The book also lists other resources and
references.

While the material is fundamentally sound, it is neither extensive nor
particularly related to information technology as such.  Details of
options and alternatives are scant.  This is certainly a worthwhile
reference as a reminder for anyone involved in disaster recovery
planning, and as a guide for the process.  For those dealing
specifically with contingency plans for computer system operations,
additional resources will be required.

copyright Robert M. Slade, 2006   BKPDRPIT.RVW   20060823


======================  (quote inserted randomly by Pegasus Mailer)
rslade@vcn.bc.ca     slade@victoria.tc.ca     rslade@computercrime.org
The proper function of man is to live, not to exist. I shall not
waste my days in trying to prolong them. I shall use my time.
                                                       - Jack London
Dictionary of Information Security  www.syngress.com/catalog/?pid=4150
http://victoria.tc.ca/techrev/rms.htm


 
Yahoo! Groups Links

<*> To visit your group on the web, go to:
    http://groups.yahoo.com/group/CISSP-Discuss/

<*> Your email settings:
    Individual Email | Traditional

<*> To change settings online go to:
    http://groups.yahoo.com/group/CISSP-Discuss/join
    (Yahoo! ID required)

<*> To change settings via email:
    mailto:CISSP-Discuss-digest@yahoogroups.com 
    mailto:CISSP-Discuss-fullfeatured@yahoogroups.com

<*> To unsubscribe from this group, send an email to:
    CISSP-Discuss-unsubscribe@yahoogroups.com

<*> Your use of Yahoo! Groups is subject to:
    http://docs.yahoo.com/info/terms/
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
  • [CISSP-D] REVIEW: "A Primer for Disaster Recovery Planning in an IT Environment", Charlotte J. Hiatt, Rob, grandpa of Ryan, Trevor, Devon & Hannah <=
Previous by Date:  [CISSP-D] Beta testing a Network Authentication certification test, kellyatbb
Next by Date:  [CISSP-D] REVIEW: "PGP & GPG: Email for the Practical Paranoid", Michael W. Lucas, Rob, grandpa of Ryan, Trevor, Devon & Hannah
Previous by Thread:  [CISSP-D] Beta testing a Network Authentication certification test, kellyatbb
Next by Thread:  [CISSP-D] REVIEW: "PGP & GPG: Email for the Practical Paranoid", Michael W. Lucas, Rob, grandpa of Ryan, Trevor, Devon & Hannah
Indexes:  [Date] [Thread] [Top] [All Lists]