The Binomial Bookstore

BUSINESS CONTINUITY AND DISASTER RECOVERY FOR INFOSEC
MANAGERS
By John Rittinghouse, PhD, CISM and James Ransome, PhD, CISM, CISSP

Every year, nearly one in five businesses suffers a major disruption to its data or
voice
networks or
communications systems. Since 9/11 it has become increasingly important for
companies to
implement
a plan for disaster recovery. This comprehensive book addresses the operational
and
day-to-day
security management requirements of business stability and disaster recovery
planning
specifically
tailored for the needs and requirements of an Information Security Officer. This
book has
been written by
battle tested security consultants who have based all the material, processes and
problem-solving on
real-world planning and recovery events in enterprise environments world wide.

- - - - - - -

“There is a significant need for a comprehensive book addressing the operational
and
day-to-day
security management requirements of business continuity and disaster recovery
planning,
specifically
tailored for the needs and requirements of an Information Security Officer. Planning
for
recovery from
disaster is a critical and essential component in the management of risk. Nearly
one in five
businesses
suffer a major disruption every year and business continuity and disaster recovery
is the
means of
ensuring the essential functions of your business survive a terrorist incident,
natural disaster,
or other
disruption. It is important for any business or organization to plan its own survival
following
the loss of, or
denial of access to, buildings, a significant number of staff, IT systems, records
and
information.”

- - - - - - -

CONTENTS

Acknowledgments
Foreword
Introduction - Business Security
1 Contingency and Continuity Planning
2 Assessing
3 Mitigation Strategies
4 Preparing for a Possible Emergency
5 Disaster Recovery
6 Business Recovery Phase
7 Testing, Auditing, and Training
8 Maintaining a Business Continuity Plan
BCP/DR Glossary
General References
Sample Recovery checklist
Physical Facility Questionnaire
Organizational Security Management
Index

- - - - - - -

"With the recent release of the Department of Homeland Security's National
Infrastructure
Protection
Plan, this single-source repository for business continuance and disaster recovery
planning
and
deployment could not have been better timed. Drs. Rittinghouse and Ransome
have
captured the
strategic and technical essentials necessary for governmental and business
leaders to make
informed
decisions concerning the survival of their organizations, be it day-to-day or in
extraordinary
situations. As
we all continue to face increased threat activities, this book is a must have for your
organization. There is
something for everyone in this work, from understanding the process of risk
mitigation for the
leadership
to detailed checklists for the technical implementer. I strongly recommend this
book." Harley
Rinerson,
Chief Information Officer for the Colorado Department of Military & Veterans Affairs

- - - - - - -

AUDIENCE

Security managers, IT managers

- - - - - - -

ABOUT THE AUTHORS

JOHN RITTINGHOUSE has over 25 years experience in the IT and security sector.
He is an
often sought
management consultant for large enterprise and is currently a member of the
Federal
Communication
Commission's Homeland Security Network Reliability and Interoperability Council
Focus
Group on
Cybersecurity, working in the Voice over Internet Protocol workgroup.

JAMES RANSOME has over 30 years experience in security operations and
technology
assessment as
a corporate security executive and positions within the intelligence, DoD, and
federal law
enforcement
communities. He has a Ph.D. in information systems specializing in information
security and
is a
member of Upsilon Pi Epsilon (UPE), the International Honor Society for the
Computing and
Information
Disciplines. He is currently an Independent Consultant.

- - - - - - -
2006, 480 pages. Order #DR796
- - - - - - -

The Binomial Bookstore

IT Disaster Recovery

Rothstein Associates Inc.