The system administrator didn’t exercise his due care neglecting the notification sent from the E-Commerce system that the RAID system is corrupting. Two RAID member disks failed in the end, that disrupted E-Commerce services. The company cannot tolerate such business losses over three days and shall recover the E-Commerce system in 24 hours. To recover the system, to which of the following should the system administrator refer?
A. Disaster Recovery Plan (DRP)
B. Business Continuity Plan (BCP)
C. Information System Contingency Plan (ISCP)
D. Computer Security Incident Response Plan (CSIRP)
Kindly be reminded that the suggested answer is for your reference only. It doesn’t matter whether you have the right or wrong answer. What really matters is your reasoning process and justifications.
My suggested answer is C. Information System Contingency Plan (ISCP).
Information System Contingency Plan (ISCP)
An ISCP is a system-specific plan, which provides established procedures and key information needed for system recovery following a disruption regardless of site or location.
Disaster Recovery Plan (DRP)
A DRP is primarily a site-specific plan developed with procedures to move operations of one or more information systems from a damaged or uninhabitable location to a temporary alternate location.
Business Continuity Plan (BCP)
The BCP focuses on sustaining an organization’s mission/business processes during and after a disruption.
Cyber Incident Response Plan
The cyber incident response plan11 establishes procedures to address cyber attacks against an organization’s information system(s).