Published on February 25, 2014
Availability & Business Resiliency Gaurav Batra
Information Security Learn C Patch I A Resilient
Availability Ability of an IT Service or other configuration item to perform its agreed function when required. • Reliability – How Long? • Maintainability – How Quickly? Availability (%) = Agreed service Time (AST) – Downtime * 100 Agreed Service Time • High Availability • Continues Availability
Importance of Availability in information Security Availability is essential to information security, because for any such system to satisfy its purpose, the information on it must be available as needed by any authorized personnel. DDoS attacks - The primary aim of DDoS attacks is to deny users of the website access to the resources of the website. Such downtime can be very costly. Availability systems make certain that they are available all the time, stopping disruptions to information service from the likes of power outages, system upgrades, or hardware failures.
Business Resiliency Business As Usual – No Matter What Business Resiliency is the ability of an organization to absorb the impact of a business interruption and continue to provide an acceptable level of service It is to work out how to continue operations under adverse conditions that include malicious attacks, hack, database corruption, theft, vandalism, regional incidents like earthquake and floods, and national incident like pandemic illness.
Business Impact Analysis BIA is the an assessment performed on below given Parameters to determine the different Recovery Objectives. The BIA Establishes the objective so that the appropriate recovery strategy can be developed to meet different recovery objectives. Financial Impact Client Impact Legal/Contractual & Regulatory Obligations Market Impact Reputation Impact Internal Impact
RTO – Recovery Time Objective RTO is Defined as the Maximum time that a business can be out of service before adverse impact as determined by the business impact analysis. Recovery time is defined from the time of incident to the time of restoration of the application. Time is the Key ….
RPO – Recovery Point Objective RPO is defined as the point in time to which data must be recovered after a system outage, liming the loss of data wihin manageable level as required by the business. Backup is key ….
RCO – Recovery Capacity Obj. RCO is the capacity required to run the application in DR. Attention should be paid tin the infrastructure design that the application can run production loads in DR. Strength is the Key ….
Continuous Application Availability: Strategy for Business ... resiliency: Continuous Availability of the ... business strategies ...
High Availability and Resiliency Testing ... they cover High Availability testing strategies at individual ... created in your business with ...
Business Resiliency ... Risk Management and overall business strategies. 3. PwC ... recovery capabilities & business unit technology availability ...
availability of critical data and business applications, IT ... Risk mitigation strategies Business ... IBM’s business continuity and resiliency services ...
Business resilience – the next step forward ... A high availability ... to develop and implement their business continuity strategies and ...
Proactive strategies to position and protect ... Business resiliency can be defined as ... plan for business availability and protection ...
Two important aspects of resiliency are high availability ... Resiliency planning starts with business ... Implementing resiliency strategies.
Integrating the resiliency needs of business and IT functions. ... with strategies and techniques designed and integrated into a ... availability ...