Professional Documents
Culture Documents
potential attacks. Appropriate network security policies close the gap between organizational security
objectives and specific organizational safety requirements for users and administrators. If an
organization tries to use a set of security tools without having at least one security policy in place,
then its network security strategy is meaningless
Prevention
The second category, Blocking, has two sub-categories: allowing security changes and monitoring
your network security.
Enabling Security Changes
The security team must identify specific network configuration requirements.
Response
The final category, Response, has 2 phases: security Violation and restoration
Security Violations
Having a good choice of an early decision makes the response more manageable. Quick decisions can
lead to a better chance of protecting network equipment, determining the size of the login, and
restoring normal operation.
Restoration
The final requirement for any security response is restoration. This is necessary in order to obtain
normal network functions.
I. Definition of disaster recovery plan (DRP)
A disaster recovery plan (DRP) is a structured, structured approach that provides guidance for coping
with unintended incidents. This step-by-step plan includes preventive measures to reduce minimizing
the impact of a disaster so that the organization can continue to operate or quickly recover important
mission functions. Typically, disaster recovery planning involves analysis of business processes and
ongoing needs. Before creating a blueprint, an organization usually conducts business impact analysis
and risk analysis and it establishes the recovery time objective and recovery point objective.
Recovery strategy
Disaster recovery strategies should start at the business level and determine which applications are
most important for running an organization. The recovery point objective describes the amount of
time a business application can stop working, usually measured in hours, minutes or seconds. When
determining recovery strategies, organizations should consider issues such as: Budget, Resources -
people and facilities, Position manager on risk, Technology, Data, Provider.