Data Processing and Communications Security During Recovery and Repair

MANY ORGANIZATIONS ASSIGN RESOURCES to primary security controls and contingency planning, but few plan beyond the initial recovery process. As data processing (DP) systems become larger, more dispersed, and increasingly linked together over local-area and wide-area networks (LANs and WANs) and such public networks as the Internet, they become not only more critical to organizations but also more vulnerable to abuse. The occurrences of abuse and disaster are becoming more frequent and are having greater impact as system size, distribution, and interconnections increase. As a result, secondary backup measures and further protection during the recovery process are becoming more critical as well as more complex. Yet, data security during system backup and disaster recovery is not usually addressed by most corporate contingency plans.