Business Continuity &
Disaster Recovery Template

A disaster recovery is a response to a declared disaster or a regional disaster. It is the restoration or recovery of an entire Agent computer. A disaster recovery plan describes how an organization is to deal with potential disasters.

The DRP template includes everything needed to customize the Disaster Recovery Plan to fit your specific requirement. More...

Security Manual Template

Most companies have initiated the necessary steps to safeguard their company assets. Information security has moved from a business cost to a business enabler. However, new threats and technologies are constantly and rapidly changing the network landscape. System administrators must scan the network continually for known security weaknesses, keep their skills current and, most important, reexamine corporate security policies periodically.

The IT Security Manual Template provides all the essential sections of a complete security manual and walks you through the creation of each step.. More...

Job Descriptions

The Internet and IT Position Descriptions HandiGuide® was completed in 2010 and is over 650 pages; which includes sample organization charts, a job progression matrix, and 231 Internet and IT job descriptions.  The book also addresses Fair Labor Standards, the ADA, and is in a new easier to read format. More...

 

Business & IT Impact

Security ManualBusiness and IT Impact Analysis
Questionnaire

ISO 27000 Series, Sarbanes Oxley, COBIT,
PCI-DSS and HIPAA Compliant

This Business and IT Impact Analysis Questionnaire has been designed by one of Industry's most experienced application assessment consultants.  This Questionnaire has been used in over 500 assessment, DRP and business impact projects in the past four years.  Included is a Risk Ranking definition.  The Word version of the questionnaire is automated with check boxes that can be updated in Word.

Version History

Version 4.0 February 2010

  • Updated for COBIT compliance
  • Updated for PCI-DSS compliance
  • Updated for US state level compliance (New York, Massachusetts, and California)\
  • Update for ISO security requirements

Version 3.3 February 2008

  •  Updated to be ISO 27000 Series compliant

  • Correct minor errata

  • Updated formatting

Version 3.3 February 2007

  •  Updated to meet ISO 17799 compliance standard

  • Application / File Servers form was added

  • Operating Environment was moved forward in the forms

  • Critically of Application was moved forward in the forms

The Questionnaire (Form) is a 23 pages in length and contains the following:

  • Facilities / Business Function / Application

  • Sarbanes-Oxley Compliance

  • ISO 27000 series (formerly ISO 17799)Compliant

  • HIPAA Compliance

  • System of Internal Controls

  • User Environment

  • Processing Environment

  • Historical Information

  • Operating Environment

  • Criticality of Application

  • Database / File Name

  • Documentation

  • Security

  • Application Support and Maintenance

  • Resource Usage

  • Hardware Requirements by Department

  • Backups