Incident & Contingency Planning

Flashcards reviewing the key concepts of incident and contingency planning, covering contingency plans, the contingency planning process, CPMT roles, business impact analysis and digital forsenics.

What is a contingency plan?

A plan designed to address possible future events or circumstances, especially emergencies.

What are some examples of contingency plans?

Incident Response Plan (IRP), Disaster Recovery Plan (DRP), and Business Continuity Plan (BCP).

What is contingency planning?

The process of senior management deciding how the organization will respond to incidents or disasters, including steps for incident response, disaster recovery, and business continuity.

What are the components of contingency planning?

Business Impact Analysis, Incident Response, Disaster Recovery, and Business Continuity.

What is Business Impact Analysis (BIA)?

Understanding the potential negative impacts on a business, such as financial losses or regulatory issues, and planning to mitigate these impacts.

What role does the Champion play in the Contingency Planning Management Team (CPMT)?

A high-level manager who supports and promotes the contingency planning project.

What role does the Project Manager play in the Contingency Planning Management Team (CPMT)?

Leading the contingency planning project, ensuring a thorough process, developing a project plan, and managing resources.

What role do Team Members play in the Contingency Planning Management Team (CPMT)?

Managers or representatives from business, IT, and information security who contribute to the contingency planning project.

What are the major steps in the contingency planning process?

Create a formal policy, conduct a Business Impact Analysis (BIA), identify preventive measures, create recovery strategies, develop a contingency plan, test the plan, and maintain the plan.

What key elements should be included in the Contingency Planning (CP) Policy?

Emphasizing the importance of contingency planning, defining the scope and purpose, emphasizing risk assessment and impact analysis, outlining major components, providing guidance for recovery options, mandating regular testing, and identifying relevant regulations and standards.

Who are the key personnel typically responsible for Contingency Planning (CP) operations?

The COO, deputy COO, CISO, business operations manager, marketing and services manager, and legal counsel.

What does a Business Impact Analysis (BIA) involve?

Investigating and assessing potential adverse events, determining the importance of systems or information, and prioritizing recovery efforts.

What does the scope of a Business Impact Analysis entail?

Deciding which parts of the organization to include in the BIA and understanding the nature of the risks being evaluated.

What is critical for planning in a Business Impact Analysis (BIA)?

Using a well-thought-out plan to collect the right data for a comprehensive analysis.

What type of balance is important to maintain when performing a Business Impact Analysis?

Balancing objective facts with subjective opinions to provide accurate information.

What is the objective of structuring a Business Impact Analysis (BIA)?

Providing decision-makers with the necessary information to consider their options effectively.

Why is follow-up communication important in a Business Impact Analysis (BIA)?

Regularly communicating to ensure that process owners and decision-makers support the BIA process and its outcomes.

Why is contingency planning crucial?

Minimizing downtime, financial losses, and reputation damage, and enhancing organizational resilience.

What are the major components of contingency planning?

Incident response, disaster recovery, and business continuity.

What process do digital forensics investigations follow?

Identifying, collecting, and analyzing digital evidence, and using forensic tools for reconstruction and root cause analysis.