TASK CONTINGENCY PLANNING

TASK CONTINGENCY planning
SoftArc Engineering Ltd (SEL) is a civil engineering company that works across Australia as well as in New Zealand, Fiji, Vanuatu, Indonesia, Timor Leste, and Papua New Guinea.
SEL has a small data center at its main site in Bathurst where the company’s servers and data storage is located.
The company has some 70 engineerings and support staff that work on different projects for clients in various locations in Australia and overseas. The support staff is mainly based in Bathurst, but the engineering staff is located in different parts of Australia, New Zealand, and Papua New Guinea. Most of the support staff have access to a PC, although some support staff shares a PC with other staff. The engineering staff all connect remotely to the SEL data center from their laptops. The SEL data center infrastructure has not been updated for some time and the SEL Board is concerned that they may be exposed to a cyber-attack as they are now starting to work on various Government projects in different countries.
 
Background:
You have been employed by SEL as their first Chief Information Security Officer (CISO). You have been tasked by the Board to conduct a review of the company’s risks and start to deploy security policies to protect their data and resources.
You are concerned that the company has no existing contingency plans in case of a disaster.
The Board indicated that some of their basic requirements for contingency planning include:

  • A Recovery Time Objective (RTO) of 4 hours
  • A Recovery Point Objective (RPO) of 6 hours

Based on these, you now need to determine:

  • The Maximum Tolerable Downtime (MTD),
  • The Work Recovery Time (WRT) and
  • The system and data recovery priority

The Board expects that you will propose a Business Continuity Plan (BCP) for SEL. The Board expects you to use as much of their existing resources as possible for the BCP, but understands that some additional resources may be required.  Your BCP proposal must clearly state what additional resources, in terms of hardware, software and locations, are required.
Tasks:
You are to develop a proposal for a Business Continuity Plan (BCP) for SEL in accordance with the Board’s instructions above. Your proposed BCP must include:

  1. A brief executive overview of the entire BCP,
  2. A Business Impact Analysis
  3. An Incident Response Plan
  4. A Backup plan,
  5. A Disaster Recovery plan,

Your proposed BCP should include the following headings:

  • Executive Overview of the BCP
  • Business Impact
  • Incident Response
  • Backup
  • Disaster Recovery

You are required to provide references in your BCP in APA 7 format.
RATIONALE
 
This assessment task will assess the following learning outcome/s:

  • be able to justify the goals and various key terms used in risk management and assess IT risk in business terms.
  • be able to apply both quantitative and qualitative risk management approaches and to compare and contrast the advantages of each approach.
  • be able to critically analyse the various approaches for mitigating security risk, including when to use insurance to transfer IT risk.
  • be able to critically evaluate IT security risks in terms of vulnerabilities targeted by hackers and the benefits of using intrusion detection systems, firewalls and vulnerability scanners to reduce risk.

MARKING CRITERIA AND STANDARDS
 

Task HD DI CR PS FL Marks
Overview Comprehensive overview of purpose and scope of BCP Broad overview of purpose and scope of BCP Good overview of purpose and scope of BCP Adequate overview of purpose and scope of BCP Poor or inadequate overview of purpose and scope of BCP 10
Business Impact Excellent analysis of business process and data and their priority for business impact Very good analysis of business process and data and their priority for business impact Good analysis of business process and data and their priority for business impact Adequate analysis of business process and data and their priority for business impact Inadequate or incomplete analysis of business process and data and their priority for business impact 15
Incident Response Comprehensive incident response plan to satisfy case study problem Very good incident response plan to satisfy case study problem Good incident response plan to satisfy case study problem Adequate incident response plan to satisfy case study problem Inadequate or incomplete incident response plan to satisfy case study problem 25
Backup policy Comprehensive backup policy to satisfy case study problem Very good backup policy to satisfy case study problem Good  backup policy to satisfy case study problem Adequate backup policy to satisfy case study problem Inadequate or backup policy to satisfy case study problem 25
Disaster Recovery Comprehensive disaster recovery plan to satisfy case study problem Very good disaster recovery plan to satisfy case study problem Good disaster recovery plan to satisfy case study problem Adequate  disaster recovery plan to satisfy case study problem Inadequate or incomplete disaster recovery plan that fails to satisfy case study problem 25
Referencing and Presentation Up to 5 marks may be deducted for incorrect or incomplete referencing in APA 7 format
Up to 5 marks may be deducted for poor presentation, spelling and grammar

 
PRESENTATION
When submitting your assignment be sure to meet the following presentation requirements:

  • Assignments are required to be submitted in either Word format (.doc, or .docx), Open Office format (.odf), or Rich Text File format (.rtf) format. Each assignment must be submitted as a single document.
  • Assignments should be typed using  a 12 point font.
  • This assignment should be referenced using the numbered IEEE style format.

REQUIREMENTS
Assignment(s) should be submitted through Turnitin. Please meet with your respective lecturer in the class to enroll in the Turnitin (If you are not enrolled this subject in Turnitin and/or do not receive any email from Turnitin) maximum by week 2
All textual elements within an assessment must be submitted in a format that is readable by Turnitin. Specific exceptions, where an assessment requires the insertion of image based evidence of workings will be outlined in the context of the assessment.  Students that deliberately attempt to insert content of assessments in a format that is not readable by Turnitin may be subject to Academic misconduct investigations.
Assessment(s) such as Blogs, Quizzes, Journals and Discussion Forums are required to submit in the Interact2, unless your lecturer advises otherwise.
Please submit the assignments only as word document in Turnitin, unless your lecturer advises otherwise.
Assignment(s) must be submitted through Turnitin by midnight (AEST) according to the date mentioned in the subject outline.
Assignment(s) submitted in the RESPECTIVE FINAL FOLDER only will be considered for marking.
 

Calculate a fair price for your paper

Such a cheap price for your free time and healthy sleep

1650 words
-
-
Place an order within a couple of minutes.
Get guaranteed assistance and 100% confidentiality.
Total price: $78
WeCreativez WhatsApp Support
Our customer support team is here to answer your questions. Ask us anything!
👋 Hi, how can I help?