Reference no: EM132210040
Discussion topics - around 200 words each topic
1. "Disaster Recovery (DR), Business Continuity Planning (BCP), and Software as a Service (SaaS) Options" Please respond to the following:
• Explain in your own words the difference between disaster recovery and business continuity planning efforts and whether or not you believe these planning efforts overlap.
• Determine whether or not cloud and SaaS services can assist and benefit an organization in its business resumption panning (BRP) efforts, and whether or not this option is available and feasible to all sizes of organizations at this point in time. Provide a rationale to support your answer.
2. "Cyber Storm" Please respond to the following:
• From the e-Activity, explain in your own words the benefits of the DHS's efforts with Cyber Storm and whether or not you believe this is a necessary and useful activity in terms of incident response preparedness.
• Determine whether or not the efforts of Cyber Storm can help all types of organizations, regardless of size and independent of industry, for incident response and preparedness planning. Provide a rationale to support your answer.
3. "To IDS or to Not IDS?" Please respond to the following:
• Suppose you were proposing the implementation of an IDS to your manager as a new initiative for your organization. Explain how you would make a business case for obtaining the funds in order to fully implement this initiative.
• Propose the top three reasons for why organizations would NOT choose to implement IDS / IPS systems, and analyze each of these reasons to determine whether you believe they are valid concerns or improper conclusions.
4. "IDS in the Cloud" Please respond to the following:
• From the e-Activities, explain whether or not you believe technologies such as IDS are still relevant and useful as there is a push toward SaaS and cloud-based solutions..
• Discuss from your perspective how cloud-based services change incident response, for better or worse, and determine what you believe to be the greatest preparedness concern with cloud-based services.
5. "Appropriate Standards"
• Select an organization with which you are familiar. Identify the compliance laws that you believe would be most relevant to this organization. Justify your response.
• Define the scope of an IT compliance audit that would verify whether or not this organization is in compliance with the laws you identified.
6. "Using a Hybrid Framework"
• Often, it is necessary to develop a hybrid framework of standards for use within a business. Identify the individual(s) within the company that should be involved in the decision-making process. Justify your choices.
• Describe how the use of a unique set of standards might impact the auditing process.