Business Continuity, Disaster Recovery & Physical Security

2 days

Individuals that need to understand concepts related to Physical, Operations, and Risk Management security principles and individuals that need to understand the security concepts and processes related to business continuity planning and disaster recovery, specifically; Facility Designers, Security Planners, Administrators, Consultants and Security Planners.

  • Describe the selection, design and configuration of a secure site
  • Define methods of securing a facility from internal and external influences
  • Explain the environment and safety measures required to protect people, facilities and resources
  • Describe the evaluation, documentation, implementation and recovery strategies related to business and network recovery in the face of natural and man made disruptions
  • Operations Security mechanisms
  • Information Security & Risk Management
  • Differentiate between disaster recovery planning and business continuity planning
  • Design a high level business impact analysis and evaluation of critical information resources

Facility Requirements

  • Restricted Areas
  • Fences, Gates and Mantraps
  • Guard Dogs
  • Badges
  • Locking mechanisms
  • Lighting
  • Site Selection and Facility Design
  • Motion Detectors, Sensors Alarms
  • CCTV

Technical Controls

  • Smart Cards
  • Audit trails and Logs
  • Intrusion Detection
  • Biometrics

Physical Security Threats

  • Natural elements
  • Vandalism
  • Utilities
  • Personnel loss

Environment and Safety

  • Power and HVAC
  • Water Leakage and Flooding
  • Fire Detection and Suppression
  • Natural Disasters

Operations Security

  • Administrative Management
  • Operational Standards & Compliance Concepts
  • Control Types and Operations
  • Resource Protection
  • Auditing and Audit Trails
  • Monitoring Tools and Techniques
  • Intrusion Detection
  • Penetration Testing
  • Inappropriate Activities
  • Threats and Countermeasures

Information Security and Risk Management

  • Security Concept's and Principles
  • Business Corporate, IT, and Security Governance
  • Protection Mechanisms
  • Change Control and Management
  • Data Classification
  • Employment Policies and Practises
  • Policies, Standards, Guidelines and Procedures
  • Roles and Responsibilities
  • Risk Management and Cost Benefit
  • Types of, and conducting, Risk Assessments
  • Threats and Vulnerabilities and Residual Risk

Business Continuity

  • Project Scope and Planning
  • Business Impact Analysis
  • Containment Strategy
  • Recovery Plan Development
  • Plan Implementation
  • Training, Testing and Maintenance

Disaster Recovery

  • Recovery Plan Development
  • Emergency Response
  • DRP Implementation
  • Training, Testing and Maintenance
  • Relocation to Primary Site
  • BCP/DRP Planning
  • Awareness and Discovery
  • Contingency Planning
  • Risk Assessment
  • Vital Records
  • Emergency Response
  • Mitigation, Preparation and testing

BCP/DRP Events

  • Explosions, Fires and Floods
  • Utility Failures
  • Hardware/Software Failures
  • Scheduled Outages
  • Employee Evacuation and Unavailability


  • Questions and answers