skip to main content
10.1145/1940941.1940969acmotherconferencesArticle/Chapter ViewAbstractPublication PagesinfoseccdConference Proceedingsconference-collections
research-article

Contingency planning and strategies

Published: 01 October 2010 Publication History

Abstract

This paper will look at contingency planning and how it can help an organization survive an incident or disaster. Contingency planning has four basic aspects: business impact analysis, incident response plan, disaster recovery plan, and business continuity plan. While there may be multiple ways to address each plan, and multiple ways to implement each, each component should be developed fully for maximum effectiveness. Creating a fully-fleshed out contingency plan is difficult and time consuming, and, once created, must be polished to maintain a state of readiness for any situation at any time. A well-made contingency plan can save an organization from going out-of-business should an incident or disaster occur.

References

[1]
Cocchiara, R. 2009 Beyond disaster recovery: becoming a resilient business. URL = ftp://ftp.software.ibm.com/common/ssi/sa/wh/n/buw03014usen/BUW03014USEN.PDF
[2]
CSO, 2010 Disaster Recovery Plans - High Availability. URL= http://csoinc.com/DR/DR.php
[3]
FFIEC (n.d). Business Continuity Planning URL= http://www.ffiec.gov/ffiecinfobase/booklets/bcp/bcp_14.html
[4]
HP, 2007 Assembling a Business Continuity Planning Team. URL = http://www.score.org/pdf/HP_BusinessContinuity_Download_6_07.pdf
[5]
Massachusetts, 2009 Sample Business Continuity Planning Steps and Issues. URL = http://media.umassp.edu/massedu/policy/DataContAppend3.pdf
[6]
Mcclain, M., 2005 A Business Continuity Plan --- Your Must-Have for 2005. URL = http://www.sun.com/emrkt/boardroom/newsletter/0105leadingvision.html
[7]
Microsoft, 2003 Incident response. URL = http://www.microsoft.com/downloads/details.aspx?FamilyId=36E889BE-4FB0-447A-943A-7484CBA0E7C1&displaylang=en
[8]
Osborne, T., 2001 Building an Incident Response Program To Suit Your Business. URL = http://www.sans.org/reading_room/whitepapers/incident/building-incident-response-program-suit-business_627
[9]
Penson, 2009 Disaster Recovery Plan. URL = https://online.penson.com/PensonBusinessContinuityPlan.pdf
[10]
Peterson, B. 2008 IT Channel Explained: Business Impact Analysis. URL = http://searchstoragechannel.techtarget.com/generic/0,295582,sid98_gci1333033,00.html
[11]
Redhat, 2002 Creating an Incident Response Plan. URL = http://www.redhat.com/docs/manuals/linux/RHL-9-Manual/security-guide/s1-response-plan.html
[12]
Slater, D. 2010 Business Continuity and Disaster Recovery Planning: The Basics. URL = http://www.csoonline.com/article/204450/business-continuity-and-disaster-recovery-planning-the-basics
[13]
Whitman, M. and Mattord, H., 2007 Principles of Incident Response and Disaster Recovery. Thompson Course Technology, 2007, Boston, MA 02210.
[14]
Whitman, M. and Mattord, H., 2010 Management of Information Security. Course Technology, Boston, MA 02210.

Cited By

View all
  • (2023)Cybersecurity and Business ContinuityInternet of Behaviors Implementation in Organizational Contexts10.4018/978-1-6684-9039-6.ch004(68-99)Online publication date: 30-Jun-2023
  • (2023)Exploring a Multidisciplinary Assessment of Organisational Maturity in Business Continuity: A Perspective and Future Research OutlookApplied Sciences10.3390/app13211184613:21(11846)Online publication date: 30-Oct-2023
  • (2023)Internet‐of‐things architectures for secure cyber–physical spacesJournal of Software: Evolution and Process10.1002/smr.251135:7Online publication date: 2-Jul-2023
  • Show More Cited By

Recommendations

Comments

Information & Contributors

Information

Published In

cover image ACM Other conferences
InfoSecCD '10: 2010 Information Security Curriculum Development Conference
October 2010
187 pages
ISBN:9781450302029
DOI:10.1145/1940941
Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]

Sponsors

  • KSU - CISE: KSU Center for InfoSec Education
  • ISSA: The Metro Atlanta Information Systems Security Association

In-Cooperation

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 01 October 2010

Permissions

Request permissions for this article.

Check for updates

Author Tags

  1. business continuity
  2. business impact analysis
  3. contingency plan
  4. disaster recovery
  5. event
  6. incident
  7. incident response
  8. planning
  9. security

Qualifiers

  • Research-article

Conference

InfoSecCD '10
Sponsor:
  • KSU - CISE
  • ISSA

Acceptance Rates

Overall Acceptance Rate 18 of 23 submissions, 78%

Contributors

Other Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

  • Downloads (Last 12 months)423
  • Downloads (Last 6 weeks)33
Reflects downloads up to 11 Feb 2025

Other Metrics

Citations

Cited By

View all
  • (2023)Cybersecurity and Business ContinuityInternet of Behaviors Implementation in Organizational Contexts10.4018/978-1-6684-9039-6.ch004(68-99)Online publication date: 30-Jun-2023
  • (2023)Exploring a Multidisciplinary Assessment of Organisational Maturity in Business Continuity: A Perspective and Future Research OutlookApplied Sciences10.3390/app13211184613:21(11846)Online publication date: 30-Oct-2023
  • (2023)Internet‐of‐things architectures for secure cyber–physical spacesJournal of Software: Evolution and Process10.1002/smr.251135:7Online publication date: 2-Jul-2023
  • (2021)Study of Emergent Strategy Implementation during Global Pandemic2021 IEEE International Conference on Technology Management, Operations and Decisions (ICTMOD)10.1109/ICTMOD52902.2021.9750411(1-5)Online publication date: 24-Nov-2021
  • (2021)Survival Likelihood of Micro and Small Businesses Facing a CatastropheThe Future of Companies in the Face of a New Reality10.1007/978-981-16-2613-5_2(17-36)Online publication date: 7-Jul-2021
  • (2017)Information System AvailabilityMaximizing Information System Availability Through Bayesian Belief Network Approaches10.4018/978-1-5225-2268-3.ch001(1-33)Online publication date: 2017

View Options

Login options

View options

PDF

View or Download as a PDF file.

PDF

eReader

View online with eReader.

eReader

Figures

Tables

Media

Share

Share

Share this Publication link

Share on social media