ABSTRACT
The purpose of computer security is to protect the information services of the organization as a whole. Information should not be lost, damaged, or modified. It should be readily available to authorized users. It should not be possible to accidentally or intentionally disable the computer system. Contingency planning is a strategy to minimize the effect of disturbances and to allow for timely resumption of activities. The aim of contingency planning is to minimize the effects of a disruption on your organization's operations. A disruption is any security violation, man-made or natural, intentional or accidental, that affects normal operations. Disruptions in computer processing can be classified into three categories:
Malfunctions: Minor disruptions that affect hardware, software, or data files. They're usually quite narrow in scope, and it's usually possible to recover from them quickly.
Disasters: Disruptions to the entire facility. They typically require the use of alternate off-site processing facilities to recover operations. Entire facilities may be disrupted for a significant period of time.
Catastrophes: The most serious type of disruption. In a catastrophe, the facilities may have been destroyed. Alternate facilities are always needed to process data. It may be necessary to rebuild or establish new or permanent facilities.
