E-commerce Security: Business Continuity Planning - Table of Contents 

 

e-Commerce Security - Business Continuity Planning

Table of Contents

ACKNOWLEDGEMENTS
I. INTRODUCTION

About This Book
iii
1
2
II. BUSINESS CONTINUITY PLANNING AND E-COMMERCE
Project Foundation
Business Assessment
Strategy Selection
Plan Development
Testing and Maintenance
5
7
8
8
8
8
III. PROJECT FOUNDATION
Business Continuity Planning Evaluation
Plan Management
Business Impact Analysis
Recovery Strategies
Plan Development
Plan Maintenance
Plan Testing
11
12
12
12
13
13
14
14
IV. BUSINESS ASSESSMENT
Risk Assessment
Information Protection
Protection
Detection
Response
Business Impact Analysis (BIA)
15
17
18
18
19
20
22
V. STRATEGY SELECTION
Computer Center Recovery
Traditional Strategies
No Strategy
Relocate, Rebuild, Restore
Cold Site
Hot Site and Warm Site
E-commerce Solutions
Hot Site with Electronic Vaulting
Active Recovery Site (Mirrored)
High Availability Terminology
Data Recovery Approaches
Other Component Recovery
Communications Recovery
Voice Communications
Data Communications
Facilities Recovery
Structure
Power
Staff Recovery
Vendor Selection
Suppliers Needed to Operate
JIT Inventory of Products
Customer Relations
Plan Strategies
25
25
26
26
27
27
27
27
27
28
28
31
33
33
33
36
38
38
39
38
41
41
43
43
43
VI. PLAN DEVELOPMENT
Step-by-step Approach
Step #1-Develop Response and Recovery Teams
Step #2-Develop Draft Action Plan
Step #3-Prioritize Action Plan Execution
Step #4-Document General Plan Sections
Step #5-Document the Technical Recovery Processes
Documentation Rules-Seven Virtues of BCP Documentation
45
46
46
49
52
52
52
55
VII. TESTING AND MAINTENANCE
Testing
Maintenance
57
57
58
ENDNOTES
APPENDIX I-BUSINESS IMPACT ANALYSIS
QUESTIONNAIRE FOR E-COMMERCE ORGANIZATIONS
APPENDIX II-TEST PLAN EXAMPLE
APPENDIX III-FREQUENTLY ASKED QUESTIONS
APPENDIX IV-GLOSSARY OF TERMS
APPENDIX V-AUDIT PROGRAM: BUSINESS CONTINUITY PLANNING
APPENDIX VI-INTERNAL CONTROL QUESTIONNAIRE
INDEX
59
61
63
69
73
77
93
97