USA: +1 (725) 712-1730 
Sign in
Case: You were notified that a network worm was spreading out through your organizational network. The worm has already disabled some of your network machines, including the email server. It seems the worm does not affect data, but sends out emails using the corporate email address book. Yet, you do not know whether the worm sent out emails to your business partners or not. Also, you are not sure where the worm started from and how to kill it. It could have come from a business email or through an unsecured application such as Kazaa or an instant messenger running on an employee’s computer.
Description:
In this assignment, you are required to ascertain details of the organization plan designed to deal with different types of emergencies including catastrophic events.
Questions:
Establish a response plan for the team members’ organization. The plan has to be specific to the organization you have chosen. The plan should include, but not be limited to, 1) response/recovery procedures, 2) a list of internal personnel and external organizations that need to becontacted in the incident, 3) a backup communication plan in case the primary communication link is broken, and 4) comparison of current practice and desirable preparedness status.
Expert Answer
Organization – XYZ Limited –
Nature of Business – Specialized Health Insurance Company
Plan to handle worm attack which can affect continuity of business:
First of all we will form different teams in organization to handle such events. These teams will be pre formed and require only invocation at time of event.
Recovery teams
- Emergency Management Team (EMT)
- Location Response Coordinator (LRC)
- Local Restoration Team (LRT)
- IT Technical Support (TS)
Team member responsibilities
- Each team member will designate an alternate backup
- All the members should keep an updated calling list of their work team members’ work, home, and mobile phone numbers.
All team members should keep this binder for reference at home in case the disaster happens during after normal work hours. All team members should familiarize themselves with the contents of this plan
Instructions for using the plan
Invoking the plan
This plan becomes effective when a disaster occurs. Normal problem management procedures will initiate the plan, and remain in effect until operations are resumed at the original location, or a replacement location and control is returned to the appropriate functional management.
Disaster declaration
The Emergency Management Team and Location Response Coordinator are responsible for declaring a disaster and activating the various recovery teams as outlined in this plan.
In a major disaster situation affecting multiple business units, the decision to declare a disaster will be determined by Management Team. The Emergency Management Team/Location Response Coordinator will respond based on the directives specified by Team.
Notification
Regardless of the disaster circumstances, or the identity of the person(s) first made aware of the disaster, the Emergency Management Team (EMT) must be activated immediately in the following cases:
• Two (2) or more identified critical processes/ systems/ locations are down concurrently for eight (8) or more working hours
• One (1) or more identified critical processes/ systems/ locations are down concurrently for twelve (12) or more hours
• Any problem at any facility that would cause either of the above conditions to be present or there is certain indication(s) that either of the conditions are about to occur
External communications
Marketing personnel are designated as the principal contacts with the media (radio, television, and print), regulatory agency, government agencies and other external organizations following a formal disaster declaration.
In the event of a mobile/ telephone network/ mail exchange services provider outage or attack of virus/worm/Trojan on email server etc.
In the event of a network service provider outage to any facility, the guidelines and procedures in this section are to be followed.
