Preliminary Report For Fleet Foot

Preliminary Report For Fleet Foot

Data Backup and Recovery

Backup and recovery procedures are the responsibility of CNI and SPIRIT. Additional information regarding Backup and Recovery procedures are outlined in the Security Plan as well as the Continuity of Operations Plan (COOP). It is imperative to be prepared in the event of a system failure or loss a data to ensure an efficient recovery. Advanced planning for ‘worse-case’ scenarios can make the recovery procedures quick and painless to everyone involved. Central Site staff will be trained on the backup and recovery procedures as outlined in the Training Plan.

Covansys recommends that all CNI and WIC personnel be informed of procedures to follow in the event of a system crash, power failure, etc.

Covansys recommends that CNI and the designated System Administrator for each Tribal Agency coordinate recovery of corrupt software and/or data.

It is imperative that CNI and/or the SPIRIT System Administrator create daily, weekly and monthly back ups of the database and keep those back ups in a secure location.

Covansys recommends that each location, CNI, Tribal Agency offices and WIC Clinics keep a copy of the software installation disks in a secure location to facilitate in a quick recovery in the event that the centralized server or computer hardware becomes corrupt.

It is recommended that WIC personnel who are switching to Off-line Mode have the equipment and training necessary to back-up their data while off-line to facilitate recovering their data in the event support is needed to recover loss of data.

It is also recommended that WIC personnel who are switching to Off-line Mode keep the application software in their possession in the event their system becomes corrupt to assist in recovery procedures.

Disaster Recovery is the responsibility of CNI and SPIRIT. Additional information regarding Disaster Recovery is outlined in the Continuity of Operations Plan (COOP). In the event of a disaster the impacted site must be guaranteed rapid recovery to continue the core business functions of managing participant information, distributing of food instruments, and meeting federal reporting requirements. CNI is responsible for providing in-house disaster recovery at designated alternate locations to provide the fastest available recovery speed, highest security, and the least amount of financial burden. It is imperative to be prepared in the event of a disaster. Advanced planning for ‘worse-case’ scenarios can make the recovery procedures quick and painless to everyone involved.

• A disaster is declared by the Executive Recovery Coordinator (ERC) or the Primary Site Coordinator (PSC) with direct input from the SPIRIT WIC Program Recovery Coordinator (WPRC), Systems Recovery Coordinator (SRC), and/or designated SPIRITI WIC Program director(s).

• Once a disaster is declared, the designated alternate site will be prepared by CNI. The proper site coordinator will be contacted and all appropriate disaster coordinators will be notified.

• The plan should be executed as detailed for each individual location.

• Once the primary facilities are re-established, a plan will be published scheduling the time of relocation. The relocation effort will be coordinated as to not impact normal business operations.

• The COOP provides specific information on the following:

Recovery Requirements

Disaster Recovery Plan – Version control

Disaster Recovery Team

Program Directory Responsibilities

Employee Responsibilities

Facility Locations and Function

Master List of CNI Contacts

Master List of SPIRIT Consortium Contacts

Master List of Covansys Contacts

• Each facility maintains a site-specific emergency response plan. Covansys recommends that this be distributed to all personnel.

Appendices

Staff Training

Product Evaluation and Research (Scanner, VOIP etc)

The following Appendices appear in the attached MS Excel Document

Security Access Register

Asset Register – Hardware and Software Licencing5)Project Sign-Off Form

Disaster recovery

IntroductionThis a preliminary report of an investigation intoSue Yu and Associates ICT infrastructure carried out with a view of identifying possible areas of infrastructure upgrade and assessing the security status of the firm’s information. The review was approved by Sue Yu the company’s managing director.

Summary of RequestThe firm realized that its existing LAN could not cope with the bandwidth needed for its litigation and document imaging systems and are exploring ways of replacing the current system with a more effective, scalable and suitable LAN infrastructure.

The firm is also looking for better ways of upgrading the employees’ workstations and the software upgrades running in the employees PC and the server software. The firm also have plans to requisition a new 40ppm OCR scanner and thus require better vendor who will supply at a cheaper cost. Furthermore the firm wishes to install wireless network that serves the three floors on top of the existing wired infrastructure. The firm also wishes to explore some of the VOIP solutions and evaluation of its benefits to the firm.

The firm also requires an investigation into its security policies and their file sharing management policy a view of updating to capture the emerging treats and challenges. And lastly possibilities of implementing a scalable infrastructure that gather for the firms future expansion.

FindingsThe existing server has low specifications that cause bottle neck in the operation of the network. Both the servers’ RAM and hard disks capacities are small and are not running the lasted server operating systems.

The admin computers have low specification for example the computers have low CPU speed of 2.4GHZ, small main memory capacity and are not running the latest operating systems and office software. The laptops the lawyers have low CPU speeds and running windows Vista operating system which is heavy thus slowing the systems.

The investigation also established that the firm are still using 10BASE-T CAT 4 wiring infrastructure which can transmit less bandwidth, susceptible to interference and covers a short distance before attenuation occur. Project ScheduleTASK PERIOD (DAYS)

Requirement solicitation 15

Cable installation 7

Server room network equipment installation 3

Configure the server infrastructure 10

Desktop configuration, testing and deployment 7

Staff training 2

Sign-off 1

Bibliography

Computer security is a crucial concept in ensuring organizational performance and efficiency and effectiveness in service delivery. This is so, especially since the application of technology in delivering services is now a basic need to any organization that desires to compete favorably in the market economy, given the rise and move towards globalization.

Data and network security form part of the foremost computer security concerns in most organizations. This includes both asymmetric and a symmetric method of ensuring maintenance and establishment of security. However, deciding between these two types of computer security is a substantial problem that most organizations are facing.Decentralization in the application management has however been termed as its major disadvantage. This is so since lack of control and underutilization of software infrastructure has been noted. It has also limited the integration of the various departments hence lack of a common platform for communication.

The current application also calls for many employees to work in the IT departments. This is so considering both the independence of regions to manage their systems and a failure to integrate the system for better operations.

Compatibility with its hardware infrastructure is also a major advantage of the adopted applications. This saved the amounts that could have been used by the company to acquire new hardware to provide a good platform for the applications. Another main pro of the dapplications is its service-oriented nature. This kind of architecture supports integration of the back-end schemes with the front-line functions hence an efficient communication and data transfer process. A universal scheme to progress application management is the reformation towards allowing and illuminating the process of making and implementing key decisions that affect an organization’s stakeholders. Given the universal complex nature of the world technology, embracing of a sole management for IT infrastructure in a large enterprise will not be effective. For accuracy and reliability to be achieved, then it has to start with management of the applications and adoption of service-oriented applications. Related to the above challenge, data and security mechanisms complexity has also been challenging and a barrier towards effective management. Managers fail to understand why monitoring is important, what is to be monitored and when monitoring should be carried out. This therefore makes continuous monitoring seem less important and is constantly ignored. The complex nature of the technologies also makes it difficult, more so because they keep changing.

GANNT CHART

TASK   September, 2012 October, 2012

  2 4 6 8 10 12 14 16 18 20 22 24 26 28 30 2 4 6 8 10 12 14 16 18 20 22 24 26 28 30

Requirement solicitation 15                                                            

Cable installation 7            

Server room network equipment installation 3      

Configure the server infrastructure 10              

Desktop configuration, testing and deployment 7            

Staff training 2      

Sign-off 1                                                            

Further Project DetailsBackups

Disaster recovery

Appendices1)Staff Training

2)Product Evaluation and Research (Scanner, VOIP etc)

The following Appendices appear in the attached MS Excel Document

3)Security Access Register

4)Asset Register – Hardware and Software Licencing5)Project Sign-Off Form