Security Issues in Disasters effecting all K20 Institutions and Staff - PowerPoint PPT Presentation

1 / 51

About This Presentation

Title:

Security Issues in Disasters effecting all K20 Institutions and Staff

Description:

What do I need to do on my campus or within my system/district? ... Hardware/software configurations. Data backup & restoration procedures ... – PowerPoint PPT presentation

Number of Views:67

Avg rating:3.0/5.0

Slides: 52

Provided by: sreb

Category:

more less

Transcript and Presenter's Notes

Title: Security Issues in Disasters effecting all K20 Institutions and Staff

1
Security Issues in Disasters effecting all K-20
Institutions and Staff

Security Internal and External
Data Recovery and
Storage
Planning

2
Who is this guy?

22 years Emergency Services
Paramedic
Haz-Mat Tech
WMD Tech
NCBRT Instructor
ODP Instructor
Operations Chief
Superdorm
bollierzero_at_aol.com

3
Lesson Objectives
How the state/local systems are supposed to
work What do I need to do on my campus or
within my system/district? How do I plan for the
next disaster?
4
Security Issues

Incident Management Activities
Pre-Incident Coordination
Technical Assistance
Public Safety and Security Assessment
Badging and Credentialing
Access Control
Site Security
Traffic and Crowd Control

5
Security Issues

Force Protection
Resource Protection
PPE issues
Gloves, Suits , or Respiratory Protection

6
Communications

Internal and External
No 10 codes
Inter-Operability
No Communications
Contingency Plans

7
Records

A record is anything created or received by
agencies or contractors in the course of
business. A record can
Be on any media e.g. electronic, digital,
microfilm, microfiche, audio tape, video tape,
film, paper - you get the idea
Be temporary (kept for a limited period of time
then destroyed)
Or permanent (kept FOREVER)

8
Vital Records Program

A vital records program identifies and protects
those records that specify how an agency will
operate in an emergency or disaster, those
records necessary to the continued operations of
the agency, and those records needed to protect
the legal and financial rights of the institution
and students.

Sarajevo, Serb gunners attempt to destroy Bosnian
identity, 1992
9
Vital Records

Emergency Operations Records Needed During an
Emergency
Must be immediately accessible
Should be on paper
For immediate retrieval in the event computer
systems do down
Or immediately available electronically off-site.

10
Emergency Operations Records

Examples
Emergency/ Continuity of Operations (COOP) Plan.
Staff contact and assignment information.
Regularly update changes in name, address, phone
numbers, etc.
Orders of succession and delegations of authority
Policy, procedural, and systems manuals
List of credit card holders to purchase needed
supplies

11
Emergency Operations Records

Electronic Format
Website E-Mail - to communicate with and
provide information to your employees and your
students. Have website and e-mail access
available from alternate site
Database with up-to-date emergency contact
information for all staff

12
Rights and Interests Records

Are essential to protect the legal and financial
rights of the K-20 institution and of the
individuals affected by its activities
Payroll and accounts receivable
Social Security and retirement
Public safety records
Titles, deeds, and contracts
Licenses and long-term permits

13
Rights and Interests Records

Not necessary to immediately re-establish
operations
Not needed in the first 24 hours
May be available from other sources
Off-site centralized computer systems
Payroll
Accounting
May be kept farther away
Less time sensitive

Burnt Records on Shelves
14
Vital Records

Your vital records will be no more than 7 of
your total records
(3 to 5 is likely)
Vital records can be either paper or electronic.

15
Regulations and Guidance

36 CFR 1236 - Management of Vital Records
Federal Preparedness Circular 65
Federal Emergency Management Agency
Executive Order 12656
Assignment of Emergency Preparedness
Responsibilities
Vital Records and Records Disaster Mitigationand
Recovery (NARA Publication)

16
Federal Preparedness Circular 65 (FEMA)

The protection and ready availability of
electronic and hardcopy documents, references,
records, and information systems needed to
support essential functions under the full
spectrum of emergencies is another critical
element of a successful COOP plan. Agency
personnel must have access to and be able to use
these records and systems in conducting their
essential functions. . . .

17
Vital Records Plan

Vital Records Program must be incorporated into
the overall Continuity of Operations Plan (COOP)
Needs clear authority
policies
authorities
procedures
designation of a Vital Records Manager

18
Institution/Business Impact Analysis

Identify institution/business functions
Determine impact of incident
Estimate loss to institution/business
Determine recovery timeframes
Gather requirements for recovery

19
Risk Assessment

Lost document
Ability to provide secondary services affected
One or two primary services affected
Destruction of major building non-work hours
Destruction of major building work hours
Severe localized natural disaster
Most severe conceivable national scope

20
Vital Records Plan
Questions

What type of information is needed during an
emergency?
What are the critical functions of the agency
that must continue during an emergency?
Which records are needed to support those
functions?

21
Vital Records Plan
Questions

Which records support critical program
activities?
Emergency personnel lists
Building blueprints and
Software documentation
Which records protect legal and financial rights?
What procedures/resources are needed to protect
and recover records?

22
Vital Records Plan
Each agencys functional responsibilities and
business needs are different. So an agency must
decide which records are vital records and assign
responsibility for them to the appropriate staff.
23
Identify Vital Records

Method
Survey or questionnaire
Physical inventory
Format
Paper records by record series
Electronic records by info syste
Identify records absolutely necessary for your
office to function in the event of a disaster

24
Prepare Copies

Paper - Generally accessible under the worst
circumstances

Electronic - Require special equipment to read

25
Vital Records
Cycling/Rotation
Vital Records must be updated often. They should
be rotated or cycled on a regular basis so the
latest version will be available in the event of
a disaster.
26
Storage/Dispersal

Vital records should be stored off-site
30 miles away for emergency operating records
Legal and financial rights records can be stored
further away

27
Off-Site Storage Options

Regional Office
Agency Owned and Operation Facility
NARA Records Center
Office of Different Agency
Commercial Storage
Hot Site Office space somewhere else all wired
and ready to work in.
Cold Site Empty office space somewhere else, not
wired.

28
Vital Records

Document (make a list) your vital records.
Indicate
Types of records
Where they are kept
Updates to the records
Off-site location(s)
Media type (CD, tape, paper, etc.)
Records accessibility

29
Vital Records and Information Technology

Many agency functions rely on information systems
(computers/networks/Internet, etc.)
Major disruptions to systems can bring some if
not all agency operations to a halt and/or have
an impact on other systems
Some electronic information are records that
require careful management

30
A Vital Records Plan

Helps an institution
Keep systems functioning
Maintain data integrity, availability, and
security
Ensure system accessibility
Recover from a disaster in a timely fashion

31
Data Migration

Document
Policies and procedures
Hardware/software configurations
Data backup restoration procedures
Employee addresses phone lists
Troubleshooting guides
Business recovery plan

32
Data Mitigation

Document
Back-up methods and procedures
full
incremental
Offsite storage
Cold sites
Hot sites
Data recovery (Ensure backup tapes can be used on
off-site computers.)
Power supply

33
Planning Issues

Reduce confusion
Minimize decisions
Identify actions
Recovery teams
Offsite recovery
Relocation
Backups documentation

34
Business Resumption Planning

Off-Site Recovery
Have pre-positioned web access, and e-mail
Plan accessibility to critical national databases
Set up on-the-fly transfer of main office phone
line to offsite location
Pre-place COOP plan, delegations of authorities,
building blueprints, etc. at emergency site

35
Vital Records Training/Testing

Incorporate vital records into overall disaster
plan
Provide vital records training to all management
and employees
Conduct annual reviews
Tests of plan
Exercises

36
Vital Records Training/Testing

Potential Problems
Plan out of date
Bottlenecked data links
Lack of realistic tests
Test becomes a disaster

Acceptable down-time changed
Needed personnel were not available
Equipment not available

37
Vital Records

Summary
Vital records get you back to work!
Vital records protect institution and student
interests!
Identify and protect your vital records!

38
Planning P
39
Planning for the worst

Anything less is best
Plan your work, work your plan

40
Emergency Preparedness

Preparedness activities can prevent a situation
from becoming a disaster

41
Fire Plugs and Emergency Preparedness

Everyone complains about location
Last to get painted
Animals give it no respect
If a fire occurs it better work

42
Limited resources for preparedness activities are
generally the rule until an emergency occurs.
Then they are plentiful, but short-lived.
43
Response

Response will occur with or without a plan

44
Ignorance of a situation rarely prevents a
decision -- it may facilitate it
45
Response to a release must begin before an event
with

Determination of threat
Development of a plan
Identification of resources
Provision of training
Response staff, officials, media, workers, etc
Public
Full communication strategy

46
Top Down Planning will fail to identify the most
critical issues which will be confronted by local
response personnel.
47
Development of Response Plans