Information Security Home

Security Awareness and Training

Acceptable Use Policy

Security Plan (Security Policies)

Disaster Recovery Plan

IT Contingency and Disaster Recovery Planning

IT Contingency Planning includes developing plans to minimize the disruptions of critical functions and the capability to recover critical IT systems in accordance with the VITA security standard SEC-501. The outcome may contribute to various plans that properly organize the response, recovery, and continuity activities for disruptions affecting the relationship between IT systems and business processes supported by the IT systems. 

Once the Business Impact Analysis and Risk Assessment processes are complete, the business processes and supporting IT systems have been identified along with system vulnerabilities, threats, and current controls.  The order of restoration has also been identified in these processes.  This step involves using this information to ensure the contingency plan is able to address the risks completely and effectively.  

The SVCC IT Contengency and Disaster Recovery Plan (DRP) is comprised of the following elements:

SVCC Continuity of Operations Plan (COOP)

SVCC IT Continuity of Operations Plan (COOP)

• SVCC Contingency Guide
• Recovery Strategies for Mission Critical Processes

• Manual Procedures for Mission Critical Processes

SVCC Emergency Procedures

• DRP Teams

• SVCC Crisis Management Plan

• Emergency Telephone Numbers

SVCC IT System Backup and Restoration

• SVCC Authorized Access Personnel

SVCC COOP and DRP Table Top Testing

SVCC COOP and DRP Plan Testing

SVCC Incident Response Plan

• Incident Response Team
• Guidance on Reporting Incidents
• Incident Reporting form
• Mitigation Strategies
• IRP Mitigation Strategies Evaluation form