Take a sneak peek at the new NIST.gov and let us know what you think!
(Please note: some content may not be complete on the beta site.).
NIST Authors in Bold
|Author(s):||Shirley M. Radack;|
|Title:||Contingency Planning for Information Systems: Updated Guide for Federal Organizations|
|Published:||July 20, 2010|
|Abstract:||This bulletin summarizes the information presented in NIST Special Publication (SP) 800-34, Rev. 1, Contingency Planning Guide for Federal Information Systems. This publication updates federal contingency planning practices by integrating risk management and system development life cycle considerations into the contingency planning process. NIST SP 800-34, Rev.1, provides instructions, recommendations, and considerations to assist federal organizations in developing and maintaining effective contingency plans. The guide covers contingency planning principles for three types of system platforms: client/server systems, telecommunications systems, and mainframe systems. Strategies and techniques common to these systems, and a defined process for identifying planning requirements, are discussed. The bulletin summarizes information in the guide and discusses the role of contingency planning as an integral component of the federal government s risk management policies and its practices for incorporating security into all phases of the system development life cycle (SDLC).|
|Keywords:||contingency planning, data availability, data confidentiality, data integrity, information security, information systems security, risk management, security categorization, security controls, security plans, system development life cycle|
|Research Areas:||Information Technology, Computer Security, Cybersecurity|
|PDF version:||Click here to retrieve PDF version of paper (42KB)|