|
December 15, 2008 |
Vol 2008, Issue 12 |
|
|
|
|
IT Toolkits Newsletter
What to do After a Disaster
PCI Compliance Implications
The clean up process can do more damage
than the actual event.... |
|
|
| |
|
PCI - DSS Disaster Recovery Plan Implications |
|
 In
several post disaster reviews that have been
conducted by Janco Associates, they have found that
over 40% of the sites that were impacted by a
disaster had significant damage occur after the
disaster event has ended and the recovery process
has started. |
|
 |
|
In This Issue |
|
Cleaning Up Water Damage |
|
PCI-DSS Compliance and Disaster Planning |
|
PCI-DSS Compliance Kit |
|
| |
|
Cleaning Up Water Damage
|
|
 You
have had a disaster and now you are starting to look
at the "mess" that you have. What do you do to clean
things up? Some tips on disaster recovery and
business continuity clean up are:
-
Wet objects (electronic)
- Disconnect from the power source and do not
turn it on. In the case of disk drives or other
electronic storage devices - inventory all of
them and label them. Create a log of all objects
recovered, actions taken, and location. Have a
disaster clean-up specialist be the one who
looks at what can be recovered.
-
Wet objects (non-electronic)
- Rinse with clear water or a fine hose spray.
Clean off dry silt and debris with soft brushes
or dab with damp cloths. Try not to grind debris
into objects; overly energetic cleaning will
cause scratching. Dry with a clean, soft cloth.
Use plastic or rubber gloves for your own
protection.
-
Drying Objects
- Air dry objects indoors if possible and use
portable fans to move the air. Sunlight and heat
may dry certain materials too quickly, causing
splits, warping, and buckling. If possible,
remove contents from wet objects and furniture
prior to drying. Storing damp items in sealed
plastic bags will cause mold to develop. If
objects are to be transported in plastic bags,
keep bags open and air circulating.
-
Mold Prevention and Cleanup
- Exposure to molds can have serious health
consequences such as respiratory problems, skin
and eye irritation, and infections. The use of
protective gear, including a respirator with a
particulate filter, disposable plastic gloves,
goggles or protective eye-wear, and coveralls or
a lab coat, is therefore essential. In order to
inhibit the growth of mold and mildew you must
reduce humidity. Increase air flow with fans,
open windows, air conditioners, and
dehumidifiers. Moderate light exposure (open
shades, leave lights on in enclosed areas) can
also reduce mold and mildew. Remove heavy
deposits of mold growth from walls, baseboards,
floors, and other household surfaces with
commercially available disinfectants. Avoid the
use of disinfectants on historic wallpapers.
Follow manufacturers' instructions, but avoid
splattering or contact with objects and
wallpapers as disinfectants may damage objects.
-
Broken Objects
- If objects are broken or begin to fall apart,
place all broken pieces and detached parts in
clearly labeled, open containers. Do not attempt
to repair objects until completely dry or, in
the case of important materials, until you have
consulted with a professional conservator.
-
Paper Materials
- Documents, books, photographs, and works of
art on paper are extremely fragile when wet; use
caution when handling. Free the edges of prints
and paper objects in mats and frames, if
possible. These should be allowed to air dry.
Rinse mud off wet photographs with clear water,
but do not touch surfaces. Wet books and papers
should also be air dried or kept in a
refrigerator or freezer until they can be
treated by a professional conservator.
-
Office Furniture
- Furniture finishes and painting surfaces may
develop a white haze or bloom from contact with
water and humidity. These problems do not
require immediate attention; consult a
professional conservator for treatment.
Textiles, leather, and other "organic"
materials will also be severely affected by
exposure to water and should be allowed to air
dry. Shaped objects, such as garments or
baskets, should be supported by gently padding
with toweling or un-inked, un-coated paper.
Renew padding when it becomes saturated with
water. Dry clean or launder textiles and
carpets as you normally would.
-
Art Work
- Remove wet paintings from the frame, but not
the stretcher. Air dry, face up, and away from
direct sunlight.
-
Metal Objects
- Rinse metal objects exposed to flood waters,
mud, or silt with clear water and dry
immediately with a clean, soft cloth. Allow
heavy mud deposits on large metal objects, such
as sculpture, to dry. Caked mud can be removed
later. Consult a professional conservator for
further treatment.
Read on...
Order Now...
|
|
PCI-DSS Compliance and Disaster Planning
|
|
 PCI-DSS
compliance is not a major issue for all enterprises
that process credit transactions on their web sites
and on their computer systems. The implications on
Disaster Recovery / Business Continuity Plans is
great.
The Disaster Recovery - Business Continuity /
Security Manual Template Bundle contain the two most
critical components of most enterprise's support
infrastructure. This bundle comes in three versions
plus there is an update service for both the DRP -
BC and Security Manual. This bundle comes in three
versions:
-
Standard Edition
- Disaster Recovery - Business Continuity
Template with the Security Manual Template
-
Premium Edition
- Disaster Recovery - Business Continuity
Template with the Security Manual Template and
25 full job descriptions for all of the key
roles in the disaster planning and security
management Process.
-
Gold Edition
- Disaster Recovery - Business Continuity
Template with the Security Manual Template and
220 full job description for all roles in the IT
function.
Read on...
Order Now... |
|
PCI-DSS Compliance Kit
|
|
The PCI DSS security requirements apply to all
"system components." A system component is defined
as any network component, server, or application
that is included in or connected to the cardholder
data environment. The cardholder data environment is
that part of the network that possesses cardholder
data or sensitive authentication data. Network
components include but are not limited to firewalls,
switches, routers, wireless access points, network
appliances, and other security appliances. Server
types include, but are not limited to the following:
web, database, authentication, mail, proxy, network
time protocol (NTP), and domain name server (DNS).
Applications include all purchased and custom
applications, including internal and external
(internet) applications.
The PCI-DSS Compliance Kit comes in three versions;
-
Silver
- Contains the e-Commerce, Wireless, and
Internet Job Descriptions in WORD and PDF
format, the Security Audit Program in WORD
format, and the PCI Audit Program in WORD and
PDF format.
-
Gold
- Contains the e-Commerce, Wireless, and
Internet Job Descriptions in WORD and PDF
format, the Security Audit Program in WORD
format, the PCI Audit Program in WORD and PDF
format, and Network Event Viewer - Unlimited
which allows you to monitor an unlimited number
of PCs Security.
-
Platinum
- Contains the e-Commerce, Wireless, and
Internet Job Descriptions in WORD and PDF
format, the Security Audit Program in WORD
format, the PCI Audit Program in WORD and PDF
format, the Network Event Viewer - Unlimited
which allows you to monitor an unlimited number
of PCs Security, and the Security Manual
Template in WORD format
Order Now...
|
|
| |
| |
|
|
Join Email List
