IST346: Information Security & Risk Management

Slides:

Advertisements

Similar presentations

IST346: Disaster Recovery Data Integrity Backups.

Advertisements

Information Technology Disaster Recovery Awareness Program.

Market Research For Small Business. How to ID your Target Audience Determining what kind of business you want to open is only the first step in the start.

MITIGATION PREPAREDNESS RESPONSE RECOVERY FOUR PHASES OF EMERGENCY MANAGEMENT Pre-event Post event Pre-event.

CSC 386 – Computer Security Scott Heggen. Agenda Security Management.

Time Management. Time Management Time Wasted is Time Lost If you waste just 6 seconds each minute, every hour you would have wasted 6 minutes That.

Introduction to Business Unit 1: What is Entrepreneurship?

SECURITY CONSULTING /DISASTER RECOVERY SERVICE The “Must Have Plans” for a Business in the World of Tomorrow.

Juan Johnson. What is Carbonite?  Online online backup service  It backup files from your computer  Need to download a small application.

© 2012 NASDAQ-LISTED: EGHT. l 8x8 Inc. NASDAQ-LISTED: EGHT 2 Surviving the Business Equivalent of the Zombie Apocalypse Why You Need Business Continuity.

Disaster Recovery Scenarios René Romo González DBA at Intel Second Meetup DBA100.

Technology and Business Continuity

Planning for Application Recovery

Cloud Computing Q&A Presented by:

Show Me the Money!.

CIS 532 STUDY creative knowledge /cis532study.com

How You Earn 2 Ways To Earn Money With Our Company Product Sales

Agenda Ticket In the door

Security on the Move & In the Clouds

What if tomorrow never comes

Monday, August 24 Today Complete AIMS post-test

Mission-critical performance with Microsoft SQL Server 2016

Perform pre-sales activities to facilitate sales presentation

The New Breed: OMS, Flow, and Power BI Integration

CIS 532 Competitive Success/snaptutorial.com

CMGT 230Competitive Success/snaptutorial.com

CIS 532 Education for Service/snaptutorial.com

CMGT 230 Education for Service-- snaptutorial.com

CIS 532 Teaching Effectively-- snaptutorial.com

CMGT 230 Teaching Effectively-- snaptutorial.com.

Community Investment Process

Microsoft Virtual Academy

Dimensional Analysis.

Dimensional Analysis Practice

Dimensional Analysis.

Finding the Standard Deviation

Today’s Agenda Go over exam #2 Go over exam #3 Lab 8 for 1 hour

Day 46 – Cause and Effect.

Day 46 – Cause and Effect.

Look through learning goal and answer one question

Go through you packet and circle any areas that were difficult for you or where you have some questions - Take 2-3 minutes for this Do Now.

IST346: Services: Monitoring and Logging

IST346: Scalability.

IST346: Internet of Things

IST346: Managing IT.

IST346: Namespaces, Identity Management

IST346: Data and Database Management, Backupa

IST346: Debugging and Troubleshooting

IST346: Servers and Data Centers

IST346: Services: Application Architecture

IST346: Mobile Services.

IST346: Ethics.

7X Abby Dominic Megan Paul Addie Jasmine Cooper Teresa Thomas John

IST346: Workstations & Clients

Agenda Discussion Content Other Messaging Services Wrap-Up.

IST346: Web Services and API’s

COMPANY NAME Business Continuity Plan Date Presented by.

IST346: Operating Systems / Command Line Interfaces

Building Leadership Capacity Maximizing Performance Case Studies

IST346: Virtualization and Containerization

IST346: Storage and File Systems

Computer Networks Lesson 5.

IST346: What Is IT?.

IST346: Cloud Computing and DevOps

Do Now Complete this on your Daily Organizers:

Finding the Standard Deviation

Activating Prior Knowledge – Notes

English 2 - May 5th Agenda: Warm-Up: Good Story

Changing Ways of Life Exit Ticket

Presentation transcript:

IST346: Information Security & Risk Management

Agenda Discussion Content Information Security Risk Managment Wrap-Up

Discussion Questions Information security is the relationship among which three factors? Give two examples of each! What are the 4 goals of information security? How is hashing different from encryption? What is the difference between disaster recovery and business continuity? Is being hacked considered a form of disaster for which a company should have a DR/BC plan? Why? Give students 1-2 minutes for each question. Its important to provide them with the opportunity to answer the questions based on the reading, labs, and assigned homework.

Lab Debrief Lab J

Budgeting for Risk Risk Budget = Risk Rate * (Estimated cost of disaster – Estimated cost of mitigation) Single Events Cost should datacenter be destroyed: $60 million Risk of Flood one in 1 million Risk of Earthquake one in 3000 Flood Risk budget = (0.000001)*$60,000,000 = $60 Earthquake Risk budget = (0.000333 )*$60,000,000 = $20,000 So, you should budget and plan for an earthquake but not a flood. Why?

Risk Budgeting A small on-line retailer cannot make $$$ when their internet connection is down. It goes down, on average for 2.5 hours each month (every 30 days), in periodic intervals. As per the ISP’s Terms of Service. The company estimates they lose an average of $15,000 for each hour their connection is down. What is the Rate of failure for this internet connection? What is the loss of business each month? What should the monthly Risk budget be? 1. 2.5 hours / 30*24 hours = 0.0035 This is the risk rate each month 2. 2.5 * $15,000 = $37,500 /month 3. 0.0035 * ($37,500 - $0) = $131.50 It makes sense to get a secondary internet connection if you can find one for less than $131.50/month.

Group Activity Business Continuity Plan

Details of Group Activity Divide into groups of 3-4 Each team should devise a business continuity plan for the following scenario: How can your company continue to sell online in the event of an issue with their cloud provider’s data center? Be sure to think through all the potential ways your service can go off line and factor that into your plan!

Your To-Do List What to work on for next class ALWAYS CONSULT THE SYLLABUS What to work on for next class

Exit Ticket Share one thing you learned today that you didn’t know before class!

Questions?