Incident Response, Business Continuity, and Disaster Recovery Plans - Research Proposal Example

? Incident Response, Business Continuity and Disaster Recovery Plans Incident Response, Business Continuity and Disaster Recovery Plans Introduction Many organizations have adopted and implemented information and communication technologies within their business functional areas. The increased use of technology by organizations is motivated by its advantages of efficiency, accuracy, communicability, storage, management and effectiveness of business operations (Coppola, 2006). Nonetheless, many organizations have not designed effective plans for response and recovery from possible incidences which would lead to loss of business continuity (Corrigan, 2008). It thus becomes imperatively necessary to provide evidence and research based guidelines for effective implementation of incident response and disaster recovery plans for organizations which have employed the use of information and communication technology in their operations. It is due to the increasing incidents of attacks to information systems and the related security challenges that it is necessary for organizations to achieve maximum precautionary plans for response and recovery from incidences without having any significant impact on the business processes. The lack of effective implementation of incident response and recovery plans has been caused by lack of specific approach and strategies for establishment and application of these plans within the organization. This paper presents a case study proposal with a view of enabling organizations to implement effective response and recovery plans for business continuity. Nonetheless, it is necessary to note that there are cost and time implications which are associated with the implementation of the incident response and recovery plans for the advantage of business continuity. Literature Review Many incidences of failure of business organizations to achieve business continuity after system attacks or breaches are attributed to a disorganized approach to the response and recovery from these attacks (Comfort, Oh and Ertan, 2009). It is thus argued that proper planning for the response and recovery of organizations from disasters is required for all organization and institutions (Omar, Alijani and Mason, 2011). In the light of this argument therefore, it is suitable that business organizations are guided in the proper planning of the response approaches and recovery process in cases of attacks to their information systems. The benefit of proper and organized response and recovery plan for various attacks to organizational computer systems is the reduction of the costs and time related to failure of continuity of business processes (Haddow, Bullock and Coppola, 2011). All organizations require an information system policy which provides the step by step procedure for response to attacks of the system and the recovery from possible attacks (Kuonqui, 2006). Without such a policy, businesses are likely to fail in attaining recovery from various attacks of their information systems (Jennex, 2012).Organizations often have incident response teams which help them to effectively manage various attacks to their information systems (Omar, Alijani and Mason, 2011). These teams are accredited with the role of following standard procedure for response and recovery from incidences. In this regard, the teams a significant function of protecting the organization from loss of the continuity of business processes (Kuonqui, 2006). It is notable that regardless of the postulation of information system policies as the solution to the response and recovery from incidences, there is no clear presentation of the contents of such polities. Moreover, the incident response team composition has not been defined clearly. This can be attributed to unprofessional response to attacks of organizations’ information systems (West, 1996). Additionally, actual steps which should be taken in the procedural response to an incidence and recovery from such incidences have not been provided in a distinct and accurate manner. It is thus evident that organizations require to be provided with the most appropriate approaches that they would employ in response and recovery from incidences so that damage and losses can be as minimal as possible. This endeavor can be attained through a scientific investigation on the most appropriate and practical based approach and steps of responding and recovering to possible attacks to the information systems of organizations. Proposed Work The ineffectiveness of incidence response and recovery from incidences which have been recorded in much organization has motivated the need for scientific investigation to proof how this effectiveness can be attained. Therefore, the proposed project is aimed at performing a scientific investigation on incident response and recovery which is aimed at ensuring that losses are minimized within organizations in event of incidences. In this regard, a study of sampled organizations which have implemented technology is to be accomplished. The purpose of the investigation is to evaluate the policies, approaches, procedures, policies and teams which are associated to incident response and recovery. The view of the investigation is to determine whether the organizations have implemented effective measures of ensuring that organizations achieve business continuity after incidences with minimum incurrence of costs. Through a sampling methodology, a convenient sample will be attained from organizations which have employed technology in their operations and have been affected by security incidences and breaches. Therefore a primary research methodology will be conducted to gather data and information on the approaches which the organizations selected in the sample employ in the achievement of effective response and recovery from system attacks. The investigation will also employ secondary research methodology with an aim or comparative analysis of the gathered data with the previous studies on incidence response and recovery of organizations from system attacks. Both quantitative and qualitative research designs will be employed in order to achieve and analyze both quantifiable and qualitative data on the area under investigation. Expected Results/Deliverables The results of the investigation will include both quantitative and qualitative data and information on the area of study. The policies, procedures and approaches to the incidence response and recovery comprise of the expected qualitative deliverables of the investigation. Moreover, the composition and the roles of the incidence response and management team in addition to the ability of the organizations to recover from incidences are expected quantitative results of the investigation. The cost and time deliverables on the response and recovery of the various system attacks to the organizations comprise of the expected quantitative deliverables. In additional to the findings of the primary investigation, secondary sources of information will also provide important quantifiable and qualitative deliverables for analysis, discussion, conclusion and recommendations. The presentation of the results is among the expected deliverables which will include the approaches, procedures and policies used by the sampled organization in the responses and recovery from various incidences. Additionally, the analysis of the response and recovery process will present recommendations on the most effective strategies and plans for response and recovery from attacks to information system attacks. The presentation of the results is expected to illustrate the various quantifiable data and costs which are associated with the loss of business continuity which emanates from ineffective response and recovery strategies to incidences. Work Plan and Schedule The work that will be carried out during the investigation is scheduled within a period of six weeks. During the first week, the preparation, selection of the sample organization and identification of data collection tools will be achieved. In the second week, actual collection of data both from the primary sources and secondary information resources will be done. The third and fourth week will be spent in the integration of the primary finding and the secondary sources of information and the analysis of the gathered data. Additionally, both quantitative and qualitative data and information will be integrated during the analyses. The fifth week will be for the writing of an elaborate research report which will contain the major findings of the investigation. Finally, the results, and recommendations of the investigation on incident response and recovery will be presented. References Comfort, L. K., Oh, N., and Ertan, G. (2009). The dynamics of disaster recovery: Resilience and entropy in hurricane response systems 2005-2008. Public Organization Review, 9(4), 309-323 Coppola, D. P. (2006). Introduction to international disaster management. Amsterdam: Butterworth Heinemann. Corrigan, A. (2008). Disaster: Response and recovery at a major research library in New Orleans. Library Management, 29(4), 293-306s Haddow, G. D., Bullock, J. A., and Coppola, D. P. (2011). Introduction to emergency management. Burlington, MA: Butterworth Heinemann. Jennex, M. E. (2012). Managing crises and disasters with emerging technologies: Advancements. Hershey, PA: Information Science Reference Kuonqui, C. (2006). Disaster response and recovery: Strategies and tactics for effective operations. Journal of International Affairs, 59(2), 365-367 Omar, A., Alijani, D., and Mason, R. (2011). Information technology disaster recovery plan: Case study. Academy of Strategic Management Journal, 10(2), 127-141 West, D. (1996). Technology advances raise disaster recovery stakes. National Underwriter.Life and Health, 100(4), 7 Read More