In order to address security incidents that may occur one organization needs to have Mitigate control strategy, also known as Contingency strategy. This strategy has the goal to reduce the impact of the vulnerability exploitation by properly plan and prepare for it. As a part of contingency strategy organization has to prepare three types of plans: Incident Response Plan (IRP), Disaster Recovery Plan (DRP), and Business Continuity Plan (BCP). Incident Response Plan (IRP) consist of actions that takes place while the incident is still in progress. This is the immediate response, and is usually done as soon as the incident is detected. IRP has details of what should be done, who is responsible, and what should be documented. IRP helps the organization to take coordinated actions in situations where incident occurs. This planning process is associated with the identification, classification, response, and recovery from an incident. If the incident escalades or is disastrous, then the organization needs to use Disaster Recovery Plan (DRP). This is the most common of all three, since it revolves around restoring systems after the disastrous incident already occurred. DRP is the planning process associated with the preparation for and recovery from a disaster, whether natural or man-made. DRP include preparation for recovery, strategies to limit losses, and detailed steps to follow after the disaster. This plan also allows organization to take coordinated, planned actions in these types of situation explained
In order to address security incidents that may occur one organization needs to have Mitigate control strategy, also known as Contingency strategy. This strategy has the goal to reduce the impact of the vulnerability exploitation by properly plan and prepare for it. As a part of contingency strategy organization has to prepare three types of plans: Incident Response Plan (IRP), Disaster Recovery Plan (DRP), and Business Continuity Plan (BCP). Incident Response Plan (IRP) consist of actions that takes place while the incident is still in progress. This is the immediate response, and is usually done as soon as the incident is detected. IRP has details of what should be done, who is responsible, and what should be documented. IRP helps the organization to take coordinated actions in situations where incident occurs. This planning process is associated with the identification, classification, response, and recovery from an incident. If the incident escalades or is disastrous, then the organization needs to use Disaster Recovery Plan (DRP). This is the most common of all three, since it revolves around restoring systems after the disastrous incident already occurred. DRP is the planning process associated with the preparation for and recovery from a disaster, whether natural or man-made. DRP include preparation for recovery, strategies to limit losses, and detailed steps to follow after the disaster. This plan also allows organization to take coordinated, planned actions in these types of situation explained