BCP Format Guide 07112007

8/10/2019 BCP Format Guide 07112007

1/65

Controlled Unclassified Information (CUI) (When Filled In)

ONTROLLED

UN LASSIFIED

INFORMATION

( UI)

(When Filled In)

This document contains information that may be exempt from public release under the Freedom of

Information Act (FOIA) (5 U.S.. 55!)" exemption ! applies. Appro#al by the enters for $isease ontroland %re#ention $ocument ontrol Officer" Office of Security and &mer'ency %reparedness" and the $

FOIA Officer" prior to public release #ia the FOIA Office is reuired.



2/65




3/65


Version Control

Date Author Version Notes

!*+*, OISO %olicy and %lannin' Team +. -e#. +



4/65

Controlled Unclassified Information (CUI) (When Filled In) NOT AN ACTUAL BCP Version 1.0/Rev. 1, 02/0

FOR GUIDANCE PURPOSES ONLY

Centers for Disease Control and Prevention

Information Technology Services OfficeNetwork Technology Branch

VACCIN IN!CTIONS "APID #TI$I%ATION S&ST'(VI"#S)

B*siness Contin*ity Plan (BCP)

!"#mitted to $om %adden, CI!&'!/C'C/CI&/&CI!&

**0 +"ford ih-a 1tlanta, 3 40425

!"#mitted6 (date)



5/65

Controlled Unclassified Information (CUI) (When Filled In)C'C VIRU! +"siness Contin"it 7lan NOT AN ACTUAL BCP Version 1.0/Rev. 1, 02/0


DOC#'NT ACCO#NTABI$IT& "CO"D

VCCI89 I8:9C$I&8! R7I' U$I;I of

Iss"ed +6

7rinted 8ame 'ate !inat"re

+C7 Coordinator

Received #6

7rinted 8ame 'ate !inat"re

Controlled Unclassified Information (CUI) (When Filled In) i


6/65



TAB$ O+ CONTNTS

DOC#'NT ACCO#NTABI$IT& "CO"D,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,i

TAB$ O+ CONTNTS,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,ii

DOC#'NT C-AN. -ISTO"&,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,iv

P"+AC,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,v

/ Introd*ction,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,/0/+.+ %urpose.........................................................................................................................+++.! Applicability.................................................................................................................+!

+./ Scope............................................................................................................................+/

+./.+ %lannin' %rinciples...............................................................................................+/+./.! Assumptions.........................................................................................................+/

+.0 -eferences*-euirements.............................................................................................+0

1 CONCPT O+ OP"ATIONS,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,10/!.+ System $escription and Architecture...........................................................................!+

!.+.+ ITSO Tools and 1ethods......................................................................................!!

!.+.! 1easures to 1aintain Operations.........................................................................!!!.! Functional $escription.................................................................................................!/

!./ System Sensiti#ity and riticality -atin's...................................................................!0

!.0 Order of Succession and $ele'ation of Authority........................................................!,

!.5 -esponsibilities............................................................................................................!2!.5.+ 3% oordinator..................................................................................................!2

!.5.! &mer'ency 1ana'ement Team............................................................................!2

!.5./ $ama'e Assessment Team...................................................................................!4

!.5.0 Technical -eco#ery Team....................................................................................!4!.5.5 1idTier $ata enter Team..................................................................................!

2 NOTI+ICATION AND ACTIVATION P-AS,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,20//.+ 6otification*Acti#ation %hase....................................................................................../+

/.! 6otification %rocedures................................................................................................/+/./ $ama'e Assessment %rocedures................................................................................../!

/.0 %lan Acti#ation............................................................................................................./!

/.0.+ 3% oordinator..................................................................................................//

/.0.! &mer'ency 1ana'ement Team 7ead...................................................................///.0./ &mer'ency 1ana'ement Team............................................................................//

/.0.0 $ama'e Assessment Team 7ead........................................................................../0

/.0.5 $ama'e Assessment Team.................................................................................../0/.5 Alternate Assessment %rocedures................................................................................./5

/., %ersonal 7ocation ontrol Form................................................................................../5

3 "COV"& Phase,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,30/0.+ -eco#ery %lannin'.......................................................................................................0+

0.! -eco#ery 8oal..............................................................................................................0!

0.!.+ Technical -eco#ery Team 7ead...........................................................................0!

Controlled Unclassified Information (CUI) (When Filled In) ii


7/65



0.!.! Technical -eco#ery Team....................................................................................0/

4 "econstit*tion Phase ("et*rn to Normal O5erations),,,,,,,,,,,,,,,,,,,,,,,,,,,,,,40/5.+ Ori'inal or 6e9 Site -estoration.................................................................................5+

5.+.+ Technical -eco#ery Team....................................................................................5!

5.! oncurrent %rocessin'..................................................................................................5!5.!.+ Technical -eco#ery Team....................................................................................5/

5./ %lan $eacti#ation.........................................................................................................5/

5./.+ Technical -eco#ery Team....................................................................................50

6 P$AN T"AININ.7 TSTIN.7 AND 8"CISS,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,60/,.+ 3% Trainin'................................................................................................................,+

,.! 3% Testin'..................................................................................................................,+

,./ 3% Test &xercises.......................................................................................................,!,./.+ Tabletop &xercises................................................................................................,!

,./.! Functional &xercises.............................................................................................,!

,././ FullScale &xercises.............................................................................................,!

9 Plan 'aintenance,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,90/

: P$AN APPNDICS;ATTAC-'NTS,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,:0/4.+ Appendices...................................................................................................................4+4.! Attachments..................................................................................................................4+

1. VIRU! +C7 'istri#"tion ;ist2. 9?"i>ment and !>ecifications4. !ervice ;evel reements/%emorand"ms of Understandin. VIRU! !tandard &>eratin 7roced"res@. VIRU! 'isaster Recover 7lan. &cc">ant 9merenc 7lan

*. +"siness Res"m>tion 7lan. Related +C7s5. Interated 9merenc %anaement 7lan

Controlled Unclassified Information (CUI) (When Filled In) iii


8/65



DOC#'NT C-AN. -ISTO"&

%odifications made to this >lan since the last >rintin are as follo-s6

DOC#'NT C-AN. -ISTO"&Plan

VersionNo,

"eleaseDate

S*mmary of Changes Section No,;Paragra5h No,

Changes'ade By

Ver. 1.0/Rev. 0

5.40.0 Final 'oc"ment Release -ithContent Chanes

9ntire'oc"ment

I$!&/8$+

Ver. 1.0/Rev. 1

02.01.0 Revised content of sections toreflect c"rrent >olic

9ntire'oc"ment

&CI!&

Controlled Unclassified Information (CUI) (When Filled In) iv


9/65



P"+AC

$he Centers for 'isease Control and 7revention (C'C)Vaccine Injections RapidUtilization System Business Continuity Plandescri#es the overall I$ emerenc

manaement >roced"res for the Information $echnolo !ervices &ffice (I$!&),relevant to the Vaccine InAections Ra>id UtiliBation !stem (VIRU!). $he >lan a>>liesto all C'C &ffice of the 'irector entities all Centers, Instit"tes, and &ffices (C/I/&s)and to all C'C facilities and assined >ersonnel. $he +"siness Contin"it 7lan (+C7)addresses all levels of I$ emerenc manaement from senior manaement to theo>erations level. $he >rovisions of the +C7 a>>l to the f"ll s>ectr"m of threatsand/or emerencies that co"ld im>act VIRU!, and also descri#e thresholds for >lanactivation, as im>lementation of the relocation or alternative >rocess o>tion(s) ifneeded, and reconstit"tion of the sstem at the oriinal or ne- facilit.

9nter>riselevel >lans that affect VIRU! are incl"ded as ttachments to the +C7 or

availa#le thro"h the +C7 Coordinator.

Controlled Unclassified Information (CUI) (When Filled In) v


10/65



/ INT"OD#CTION

/,/ P*r5ose

$he >"r>ose of the VIRU!+C7 is to esta#lish an I$ emerenc res>onse manaementca>a#ilit a>>lica#le thro"ho"t C'C ens"re an ade?"ate level of >re>aredness-ithin C'C meet a>>lica#le >lannin re"lations and "idelines address Contin"itof &>erations 7lan (C&&7) re?"irements ens"re effective coordination andmanaement of C'C reso"rces d"rin emerenc sit"ations to >rotect h"man healthand safet minimiBe im>acts on the environment, and C'C o>erations and >ro>ertd"rin emerenc sit"ations. $he +C7 is the >rimar reference for defined I$emerenc manaement activities for VIRU!.

$he +C7 serves to interate emerenc manaement and C&&7 >rocesses and>roced"res that c"rrentl eDist -ithin I$!&. s a res"lt, -henever >ossi#le, the +C7

references other >lans and/or >roced"res that s">>lement the information o"tlined inthe +C7. $he >lan descri#es I$!&Es overall emerenc manaement oraniBation,installation of the +C7 Coordinator and %anaement $eam roles and res>onsi#ilities,>roced"res, and reso"rce information necessar to res>ond ?"icl and efficientl toI$ emerencies as re?"ired # a>>lica#le re"lations and "idelines.

$he >lan details >roced"res to recover VIRU! follo-in a disr">tion. $he follo-ino#Aectives have #een esta#lished for this >lan6

%aDimiBe the effectiveness of continenc o>erations thro"h an esta#lished

>lan that consists of the follo-in >hases6

Notification/Activation phase to detect and assess damae andactivate the >lan.

Recovery phase to restore tem>orar VIRU! o>erations and recoverdamae done to the oriinal sstem.

Reconstitution phase to restore VIRU! >rocessin ca>a#ilities to normalo>erations.

Identif the activities, reso"rces, and >roced"res needed to carr o"t VIRU!

>rocessin re?"irements d"rin >roloned interr">tions to normal o>erations.

ssin res>onsi#ilities to desinated I$!& >ersonnel and >rovide "idance for

recoverin VIRU! d"rin >roloned >eriods of interr">tion to normalo>erations.

9ns"re coordination -ith other I$!& staff -ho -ill >artici>ate in the

continenc >lannin strateies. 9ns"re coordination -ith eDternal >oints ofcontact and vendors -ho -ill >artici>ate in the continenc >lanninstrateies.

!>ecific oals of the +C7 relative to an I$ emerenc incl"de6

Controlled Unclassified Information (CUI) (When Filled In) !ection 1


11/65



$o detail the correct co"rse of action to follo-,

$o minimiBe conf"sion, errors, and eD>ense, and

$o effect a ?"ic and com>lete recover of selected services.

!econdar o#Aectives of the +C7 are6

$o red"ce riss of loss of services,

$o >rovide onoin >rotection of C'CEs assets, and

o $o ens"re the contin"ed via#ilit of the +C7.

/,1 A55lica>lies to the f"nctions, o>erations, and reso"rces necessar torestore and res"me the C'CEs VIRU! o>erations as it is installed at Ro#al Cam>"s,+"ildin 1, tlanta, 3eoria. $he +C7 a>>lies to C'C >ersonnel and all other >ersonsassociated -ith VIRU! as identified in !ection 2.4, Res>onsi#ilities.

$he C'C is re?"ired to demonstrate the ca>a#ilit to maintain Contin"it of&>erations (C&&7) essential f"nctions across a #road s>ectr"m of haBards andthreats, in order to f"lfill its national mission. $o cover the C&&7 re?"irement, theVIRU! +C7 is s">>orted # the CDC Integrated Emergency Management Plan (I9%7),dated Fe#r"ar 200@. $he I9%7 is a com>rehensive, overarchin >lan desined toens"re that C'C >ossesses an ade?"ate level of emerenc >re>aredness and meetsall a>>lica#le >lannin re"lations and "idelines. $he overall o#Aective of the I9%7 isto >rovide an emerenc res>onse and manaement ca>a#ilit at C'C. $he >lanaddresses C&&7 re?"irements and is desined to6 ens"re >ersonnel acco"nta#ilitthro"ho"t the d"ration of an emerenc ens"re o>erational ca>a#ilit -ithin 12ho"rs of a disr">tion and, esta#lish relia#le >rocesses and >roced"res to ac?"irereso"rces necessar to contin"e essential f"nctions and s"stain o>erations for "> to 40das.

$he VIRU! +C7 is coordinated -ith and s">>orted # the VIRU! +"siness Im>actnalsis (+I) and the VIRU! 'isaster Recover 7lan ('R7). $he +I f"ll characteriBesthe sstem re?"irements, >rocesses, and interde>endencies. $his information is "sedto determine continenc re?"irements and >riorities. $he 'R7 is desined to ena#lean oraniBation to res>ond to an I$ emerenc and res"me critical #"siness >rocessin-ithin a >redetermined >eriod of time at an alternate site after a disaster. $he 'R7-ill onl #e activated if an emerenc event -o"ld den access to the Ro#al Cam>"sfacilit for an eDtended >eriod of time.



12/65



/,2 Sco5e

/,2,/ Planning Princi5les

Vario"s scenarios -ere considered to form a #asis for the >lan, and m"lti>leass"m>tions -ere made. $he a>>lica#ilit of the >lan is >redicated on the follo-ine >rinci>les6

$he I$!& facilit at Ro#al Cam>"s, +"ildin 1, in tlanta, 3eoria is

inaccessi#le therefore, >ersonnel are "na#le to >erform VIRU! >rocessin forall C'C C/I/&s.

$he C'C has a valid contract -ith C&&7 8orth that desinates their facilit

located at ;a-renceville, 3 as the alternate >rocessin site.

$he C'C-ill "se the C&&7 8orth facilit and I$ reso"rces to recover VIRU!

f"nctionalit d"rin an emerenc sit"ation.

UtiliBin VIRU! I$ reso"rces, I$!&-ill ens"re contin"ed VIRU! dail #"siness

f"nctions.

$he desinated com>"ter sstem(s) at the C&&7 8orth facilit has #een

confi"red to #ein >rocessin VIRU!information.

$he C&&7 8orth facilit -ill #e "sed to contin"e VIRU!recover and

>rocessin thro"ho"t the >eriod of disr">tion, "ntil the ret"rn to normalo>erations.

/,2,1 Ass*m5tions

+ased on the a#ove >rinci>les, the follo-in ass"m>tions -ere "sed -hen develo>inthe VIRU! +C76

VIRU! is ino>era#le at the GRo#al Cam>"s, +"ildin 1, in tlanta, 3eoriaH

and cannot #e recovered -ithin 2 ho"rs.

e VIRU! >ersonnel have #een identified and trained in their emerenc

res>onse and recover roles the are availa#le to activate the VIRU! +C7.

7reventive controls (e.., enerators, environmental controls, -ater>roof

tar>s, s>rinler sstems, fire eDtin"ishers, and fire de>artment assistance) aref"ll o>erational at the 8et-or &>erations Center (8&C) the time of thedisaster.

I$ e?"i>ment, incl"din com>onents s">>ortin VIRU!, are connected to a

#atter #ac"> sstem that >rovides a three ho"r chare to ens"re clean>o-er and safe sh"tdo-n in the event of a maAor >o-er fail"re. dditionall, aenerator #ac"> a"tomaticall starts d"rin a >o-er fail"re -hich >rovides an"ninterr">ti#le >o-er s">>l (U7!).



13/65



Internethard-are and soft-are at the 8&Care "navaila#le for at least 2

ho"rs.

C"rrent #ac">s of the a>>lication soft-are and data are intact and availa#le

at GIron %o"ntainH.

$he e?"i>ment, connections, and ca>a#ilities re?"ired to o>erate VIRU!are

availa#le at the C&&7 8orth facilit and -orin as desined.

VIRU! !ec"rit Controls, to incl"de 9"thentication ss"rance ;evels, at the

C&&7 8orth facilit are e?"ivalent to the level of sec"rit maintained at theoriinal site.

!ervice ;evel reements (!;), %emorand"ms of reement (%&), and/or%emorand"ms of Understandin (%&U) are maintained -ith VIRU! hard-are,soft-are, and comm"nications >roviders definin their res>onsi#ilities -ithreards to the s">>ort of the VIRU! mission, sstem, and its data.

$he VIRU! +C7 does not a>>l to the follo-in sit"ations6

Overall recovery and contin*ity of ant 9merenc 7lan (&97) isincl"ded as ttachment 5 to the >lan.

Disaster recovery,$he VIRU! 'isaster Recover 7lan ('R7) is incl"ded asttachment to the >lan.

B*siness res*m5tion,$he VIRU! +"siness Res"m>tion 7lan (+R7) ma #eincl"ded as an ttachment to the 7lan.

Single 5oint fail*re,de?"ate red"ndanc eDists -ithin VIRU! so that a minordisr">tion (i.e., dis drive fail"re, shortterm >o-er o"tae) that does notre?"ire relocation -ill not activate the >lan.

/,3 "eferences;"e=*irements

$he VIRU! +C7 com>lies -ith the C'CEsI$ continenc >lannin >olic as follo-s6

Federal 7re>aredness Circ"lar (F7C) @ mandates that all Federal aencies havecontin"it of o>erations >lans for essential f"nctions and the >eo>le and reso"rces

-ith -hich to ee> them in service. $he VIRU! +C7 doc"ments I$!&Es continenc>lannin ca>a#ilit to meet the needs of the VIRU! critical s">>ort o>eration in theevent of a disr">tion eDtendin #eond 2 ho"rs.

$he VIRU! +C7 also com>lies -ith the follo-in Federal and 'e>artmental >olicies6

Controlled Unclassified Information (CUI) (When Filled In) !ection


14/65



+ederal $aw and >ec*tive Orders

&xecuti#e Order (&O) +!,5," Assignment of Emergency Preparedness Responsibilities"

6o#ember +4" +44" as amended

&O +!+04"Federal Emergency Management" :uly !" +2" as amended

&O +!+" 6ational $efense Industrial -esource %reparedness" :une ," +0" as amended

-omeland Sec*rity ; Presidential Directive ; Presidential Decision Directive

;omeland Security %residential $irecti#e (;S%$5)" Management of Domestic Incidents"

February !4" !/

;omeland Security %residential $irecti#e (;S%$2)" Critical Infrastructure Identification,Prioritization and Protection" $ecember +2" !/

;omeland Security %residential $irecti#e (;S%$4)"National Preparedness" $ecember +2"

!/

F% ,5A" Federal &xecuti#e 3ranch ontinuity of Operation" :une +5" !0

F% ," ontinuity of the &xecuti#e 3ranch of the Federal 8o#ernment at the ;eaduarters

7e#el $urin' 6ational Security &mer'encies" 6o#ember !" +

%residential $ecision $irecti#e (%$$) ,2" &ndurin' onstitutional 8o#ernment and

ontinuity of 8o#ernment Operations" October !+" +4

Office of 'anagement and B*dget

Office of 1ana'ement and 3ud'et (O13) ircular A+/" Management of FederalInformation Resources" Appendix III" 6o#ember !

+ederal mergency 'anagement Agency

$he Federal Information !ec"rit %anaement ct of 2002 (FI!%), $itle III,(7"#lic ;a- 10*4*) 'ecem#er 1*, 2002

Federal 9merenc %anaement enc (F9%), Te !ederal Response Plan"!RP#$>ril 1555

National Instit*te of Standards and Technology S5ecial P*


15/65



8ational Instit"te of !tandards and $echnolo !>ecial 7"#lication (8I!$ !7 00

@4, Revision 2), Recommended !ec"rit Controls for Federal Information!stems, 'ecem#er 200*

6ational Institute of Standards and Technolo'y Special %ublication (6IST S% 4,/)"

Electronic Aut"entication uideline" September !0

De5artment of -ealth and -*man Services

$epartment of ;ealth and ;uman Ser#ices (;;S)" Contingency Planning for Information

#ecurity uide $ %&&'$&(" :uly !/" !0

Code of +ederal "eg*lations

0+ ode of Federal -e'ulations (F-) ++.!.+/0" )ccupant Emergency Program" re#ised

:uly +" !

/, ode of Federal -e'ulations (F-)" %art +!/," Management of *ital Records" re#ised

:uly +" !

8otes6

o +ederal Information Sec*rity 'anagement Act of 1??1 (+IS'A)

!">ersedes the 3overnment Information !ec"rit Reform ct (3I!R), &cto#er2000, and Com>"ter !ec"rit ct of 15*.

o +PC 64A +ederal >ec*tive Branch Contin*ity of O5eration

!">ersedes F7C @ !ederal E(ecuti'e Branc Continuity o& )peration, :"l 2,1555 F7C Tests$ Training$ and E(ercise "TT*E# Program and C))P, >ril 40,2001 and F7C *,+c,uisition &or +lternate !acilities &or C))P, >ril 40, 2001.

o -omeland Sec*rity Presidential Directive (-SPD09)7 Critical

Infrastr*ct*re Identification7 Prioriti@ation and Protection Re>laces7residential 'ecision 'irective (7'') 4, Critical In&rastructure Protection, %a155.

o -omeland Sec*rity Presidential Directive (-SPD0:)7 National

Pre5aredness "ments !7'*.

$he References/Re?"irements ;ist -as last ">dated on 'ecem#er 1, 200



16/65



1 CONCPT O+ OP"ATIONS

1,/ System Descri5tion and Architect*re

VIRU! "ses an interated I$ architect"re that s">>orts the Interated VitalInformation !stem (IVI!). IVI! is a commercial offtheshelf (C&$!) >rod"ct.ard-are red"ndanc -ithin the architect"re reatl red"ces the lielihood of a>iece of e?"i>ment #rinin do-n o>erations for an lenth of time since com>ara#lee?"i>ment can #e easil ccled in to re>lace damaed e?"i>ment. IVI! >rovides thea"tomated data collection and re>ortin of intervie- and eDamination from vario"seora>hicall dis>ersed locations, also referred to as a stand, across the U.!. IVI!s">>orts field offices, Centers, I$!&, and VIRU! f"nctions. VIRU! >rovides informationass"rance thro"h encr>tion, >ass-ord >rotection, fire-alls, and a"ditin.

VIRU! has a near realtime re>lication architect"re for transferrin data from the F&

to I$!&. It de>ends on relia#le e?"i>ment, soft-are and telecomm"nications. llmaAor com>onents of the architect"re have #een desined for a"tomatic or semia"tomatic rollover in the event of a fail"re.

VIRU! maintains red"ndant connections to the field, data re>lication, re"lar #ac">sched"les, and offsite storae to ens"re that data is not lost or com>romised and can#e recovered # m"lti>le means. $he data#ase servers in the field maintain a"tomaticrollover red"ndant arra of inde>endent diss (RI') sstems, and em>lo red"ndantnet-or connections in the event of a >rimar server fail"re. $he servers areconnected to a #atter #ac"> -ith a three ho"r chare to ens"re clean >o-er andsafe sh"tdo-n in the event of a maAor >o-er fail"re. Fi"re 1 de>icts the VIRU!

net-or.

DATA

Data

Store

Roybal, Bldg 16

CDC

Backbone

eAuthentication

IVISIVIS VIRUS User

IR! VIRUS ITS!

D

"

#eri$

eter

%&Rod Data 'ntry

(ire)all TDC

Sun(ireV1*+

Sun

Sun(ireV1*+

Sun

SunSunFireV210

SunFireV240

Sun Sun

etra '1

etra -1

Sun

Do$ain Controller

VIRUS

Database Ser.er

Integration /

Auto$ation

(ile Ser.er

Ta0e Backu0s

Certiicate

2eb Ser.er

Cold(usion A00lication Ser.er

(le3 A00lication Ser.er



17/65



+ig*re / VI"#S Network Diagram

1,/,/ ITSO Tools and 'ethods

'"rin the sstem develo>ment life ccle (!';C) of VIRU!, I$!& considered a n"m#erof continenc event scenarios and develo>ed tools and methods to lessen theim>act. $he follo-in is a list of those tools and methods.

7roAect cell >hones -ith contact lists

"tomated monitorin and alerts (Jheart#eatsE, stat"s and loin, eDce>tion

alerts) sent to email and cell >hones

o eart#eats >rovide a net-or stat"s re>ort and data#ase re>ort

o Ro"tine re>orts and los

8et-or sec"rit scan

Ro"ter accesslist loin

UniD sslos

'ata#ase server and re>server los

o 9Dce>tion alerts

'ata#ase shrinin

ost or W8 lin do-n

C7U "tiliBation

'ata#ase re>lication interr">ted 'is mirror fail"re

7o-er

'esinated >rimar contacts for olida, -eeend, and evenin s">>ort

Remote access to sstems for >ro#lem dianosis and resol"tion

!ession stat"s re>orts and los

+acend edit re?"ests

9nhancement re?"est via Iss"e $racin !stem

9?"i>ment inventor, re>air histor, iss"es via 9?"i>ment $racin !stem

1,/,1 'eas*res to 'aintain O5erations

$he follo-in are methods "sed to ens"re contin"ed o>erations of VIRU!.

7rimar and #ac"> W8 lins

7rimar, -arm stand# and re>licate servers



18/65



K"e"in to s">>ort limited standalone o>erations

Red"ndant net-or ca#lin

Crosstrainin staff in e technoloies

!"fficient >arts to maintain o>erations (incl"din "niversal re>lacementdata#ase server)

1,1 +*nctional Descri5tion

$he VIRU! sstem consists of m"lti>le com>"tin and f"nctional com>onents atdifferent locations. VIRU! "ses a so>histicated and com>leD architect"re no-n as theInterated Vital Information !stem (IVI!), for data collection. !ince IVI! #ean>rod"ction in &cto#er 2000, it has >rovided a"tomated data collection and re>ortinof intervie- and eDaminations from eora>hicall dis>ersed locations (stands)across the United !tates. '"rin 200, IVI! -ill #e "sed to com>lete data collection at

22 locations.

$he VIRU! a>>lication is com>rised of s>ecific devices, com>onents, and s"#sstemsthat are critical to the f"nctionalit of the a>>lication as a -hole. 9ach VIRU!com>onent has a se>arate role in VIRU! data >rocessin.

7rimar com>onents of VIRU! incl"de6

!"n %icrosstems data#ase servers at the field offices and 8&C trailers.

8$ -orstations and servers are located at the field offices and 8&C trailers.

8$ -orstations are "sed for data#ase access, data mani>"lation and revie-,and n"mero"s other administrative d"ties. 8$ servers >rovide file and >rintserver f"nctionalit to each net-or. $he 8$ server does not maintain thedata#ase records from medical eDams or s"rves.

8et-orin e?"i>ment, s"ch as Cisco 2@00 and 000 series ro"ters and Cisco

9thernet s-itches.

ealth eDaminations are cond"cted in a s>eciallLe?"i>>ed 8&C trailers, made

"> of fo"r interconnected trailers, containin hih tech '7 and medicale?"i>ment, incl"din *@ mo#ile eDam center -orstations, @ field office-orstations, and 0 F"Aits" >ento> com>"ters for enterin intervie- data. $heF"Aits" >ento>s are similar to la>to>s and can #e connected to the net-or for">loadin s"rve data. test confi"ration is maintained at the contractor

facilit.

IVI! >rovides com>rehensive information for all >hases of VIRU!, incl"din

desin, data collection, ?"alit ass"rance, data revie- and analsis,>re>aration and release of >"#lic "se data sets, and technical s">>ort. C'C hascontracted -ith :Rod, Inc. for data collection and >rocessin. :Rod, Inc.>rovides f"lltime field staff that travel 11 months each ear collectin data.IVI! is a com>leD environment s">>ortin fo"r field offices, three Centers, the



19/65



home office, and C'C. 9ach of these locations is a local area net-or, and allcomm"nicate -ith one another over a framerela#ased -ide area net-or.9ach location has at least one data#ase server, an office a"tomation server, andIntel #ased -orstations. $he c"rrent IVI! consists of over @0 Windo-s

a>>lications actin as clients to a re>licated !#ase data#ase environment. $he>ilot and >rod"ctions versions of IVI! -ere tested s"ccessf"ll aainst af"nctional test s"ite >rovided # C'C.

1,2 System Sensitivity and Criticality "atings

$he overall !stem !ec"rit ;evel of VIRU! for confidentialit, interit, andavaila#ilit are all I3. $he !stem !ensitivit and Criticalit Ratins and descri>torsfor the VIRU! architect"re are as follo-s6

$oss of Integrity. !stem and data interit refers to the re?"irement thatinformation #e >rotected from im>ro>er modification. Interit is lost if

"na"thoriBed chanes are made to the data or I$ sstem # either intentionalor accidental acts. If the loss of sstem or data interit is not corrected,contin"ed "se of the contaminated sstem or corr">ted data co"ld res"lt ininacc"rac, fra"d, or erroneo"s decisions. lso, violation of interit ma #ethe first ste> in a s"ccessf"l attac aainst sstem availa#ilit orconfidentialit. For all these reasons, loss of interit red"ces the ass"rance ofan I$ sstem.

$oss of Availarod"ctive time,

th"s im>edin the end "sersE >erformance of their f"nctions in s">>ortin theoraniBationEs mission.

$oss of Confidentiality. !stem and data confidentialit refers to the >rotectionof information from "na"thoriBed disclos"re. $he im>act of "na"thoriBeddisclos"re of confidential information can rane from the Aeo>ardiBin ofnational sec"rit to the disclos"re of 7rivac ct data. Una"thoriBed,"nantici>ated, or "nintentional disclos"re co"ld res"lt in loss of >"#licconfidence, em#arrassment, or leal action aainst the oraniBation.

$ani#le effects of sstem deradation can "s"all #e meas"red ?"antitativel in lostreven"e, the cost of re>airin the sstem, or the level of effort re?"ired to correct

>ro#lems ca"sed # a s"ccessf"l threat action. Intani#le effects (e.., loss of >"#licconfidence, loss of credi#ilit, damae to an oraniBationEs interest) cannot #emeas"red in s>ecific "nits #"t can #e ?"alified or descri#ed in terms of >otentialim>acts. +eca"se of the s"#Aective nat"re of these effects, the follo-in "idedesinates and descri#es onl the ?"alitative cateoriesMih, %oderate, and ;o-im>act.



20/65



'agnit*de ofIm5act

Im5act Definition

;o-

$he loss of confidentialit, interit, or availa#ilit co"ld #e eD>ected tohave a limited adverse effect on oraniBational o>erations,oraniBational assets, or individ"als.

%7;IFIC$I&86 limited adverse effect means that, for eDam>le, theloss of confidentialit, interit, or availa#ilit miht6 (i) ca"se aderadation in mission ca>a#ilit to an eDtent and d"ration that theoraniBation is a#le to >erform its >rimar f"nctions, #"t the

effectiveness of the f"nctions is noticea#l red"ced (ii) res"lt in minordamae to oraniBational assets (iii) res"lt in minor financial loss or(iv) res"lt in minor harm to individ"als.

%oderate

$he loss of confidentialit, interit, or availa#ilit co"ld #e eD>ected tohave a serio"s adverse effect on oraniBational o>erations,oraniBational assets, or individ"als.

%7;IFIC$I&86 serio"s adverse effect means that, for eDam>le, theloss of confidentialit, interit, or availa#ilit miht6 (i) ca"se asinificant deradation in mission ca>a#ilit to an eDtent and d"rationthat the oraniBation is a#le to >erform its >rimar f"nctions, #"t theeffectiveness of the f"nctions is sinificantl red"ced (ii) res"lt in

sinificant damae to oraniBational assets (iii) res"lt in sinificantfinancial loss or (iv) res"lt in sinificant harm to individ"als that doesnot involve loss of life or serio"s life threatenin inA"ries.

ih

$he loss of confidentialit, interit, or availa#ilit co"ld #e eD>ected tohave a severe or catastro>hic adverse effect on oraniBationalo>erations, oraniBational assets, or individ"als.

%7;IFIC$I&86 severe or catastro>hic adverse effect means that, foreDam>le, the loss of confidentialit, interit, or availa#ilit miht6 (i)ca"se a severe deradation in or loss of mission ca>a#ilit to an eDtentand d"ration that the oraniBation is not a#le to >erform one or more of

its >rimar f"nctions (ii) res"lt in maAor damae to oraniBationalassets (iii) res"lt in maAor financial loss or (iv) res"lt in severe orcatastro>hic harm to individ"als involvin loss of life or serio"s lifethreatenin inA"ries.

Controlled Unclassified Information (CUI) (When Filled In) !ection @


21/65



1,3 Order of S*ccession and Delegation of A*thority

In the event that a sit"ation ca"sin disr">tion affects I$!& senior >olic anddecisionmaer(s), or ca"ses a sh"tdo-n of o>erations of VIRU!, the 'irectorEs

a"thorit ma #e deleated. $o ens"re contin"it of C'C leadershi>, seniorlevelofficials desinated in the C'C &rder of !"ccession are identified #elo-. 8otificationRoster is incl"ded in the >lan at >>endiD + for contact information. If the 'irectorfor I$!& is "navaila#le, these officials, in desinated order, -ill serve as the ctin'irector "ntil the 'irector of the C'C officiall a>>oints a s"ccessor. $he ctin'irector -ill o>erate -ithin the frame-or of deleated a"thorities eDercised # the'irector for I$!&, incl"din the follo-in6

Circ"mstances "nder -hich a"thorit is to #e eDercised

;imitations of a"thorit and acco"nta#ilit

"thorit to redeleate oraniBation f"nctions and activities

"thorit to eDercise oraniBation direction and

Circ"mstances in -hich deleated a"thorities #ecome effective and -hen theare terminated.

In the a#sence of the 'irector for I$!& in an emerenc, the C'C &rder of !"ccessionis as follo-s6

1. 'e>"t 'irector for I$!&

2. Chief &>eratin &fficer and

4. 8$+ +ranch Chief

In the a#sence of a C/I/& 'irector in an emerenc, the C/I/& &rder of !"ccession isas follo-s6

1. C/I/& 'e>"t 'irector

2. C/I/& '%& or desinee

ssined s"ccessors are to o>erate -ithin the frame-or of deleated a"thoritieseDercised # the C/I/& 'irector, >rovide leadershi> and "idance, and ens"recontin"it of C/I/& essential f"nctions in s">>ort of C'CEs overall mission.

$he +C7 Coordinator is res>onsi#le for ens"rin the eDec"tion of >roced"resdoc"mented -ithin the VIRU! +C7. If the +C7 Coordinator is "na#le to f"nction as theoverall a"thorit, he ma choose to deleate this res>onsi#ilit to a s"ccessor, -hoshall f"nction as that a"thorit.



22/65



In the a#sence of the +C7 Coordinator in an emerenc, the &rder of !"ccession is asfollo-s6

1. VIRU! Unit ;ead

2. $eam ;ead or desinee

1,4 "es5onsiond to a continenc eventaffectin VIRU! and >artici>ate in recoverin VIRU! o>erations. %em#ers of the teamsincl"de 8&C >ersonnel -ho are also res>onsi#le for the dail o>erations andmaintenance of VIRU!. $he $eam ;eads direct the teams and -or toether to ens"rethat the im>act on the VIRU! mission is minimal. +elo- are listins of the teams andtheir f"nctional descri>tions-$he relationshi>s of the teams involved in VIRU! sstemrecover are ill"strated in >>endiD '.

VIRU! has a "ni?"e s">>ort str"ct"re that incl"des6 (1) &nsite technical s">>ort atthe field offices and Centers (data manaers) (2) n I$!& sinle >oint of contact and(4) n"mero"s s"#Aect matter eD>erts. 9ach recover team has a desinated teamlead, alternate team lead, and s"#Aect matter eD>erts.

$he team leads/alternate team leads -ill meet on a dail #asis (e.., facetoface,tele>hone) to disc"ss the stat"s of the recover o>erations. $he >"r>ose of thesemeetins is to6

'etermine -here each team is in the recover >rocess

9ns"re that each recover ste> is cond"cted in an orderl fashion and

UtiliBe the eD>ertise of the teams for resol"tion of iss"es or >ro#lems

enco"ntered.

1,4,/ BCP Coordinator

$he +C7 Coordinator, -hen indicated, declares an I$ emerenc and activates theVIRU! +C7. $he +C7 Coordinator -ill contact the 9merenc %anaement $eam (9%$);ead to oversee activation of the +C7. $he I$!& 'irector is the +C7 Coordinator.

1,4,1 mergency 'anagement Team

$he 9merenc %anaement $eam (9%$) has overall a"thorit over the recover ofVIRU! d"rin a continenc event, and is the desinated liaison #et-een the +C7Coordinator and the Recover $eam ;ead(s) d"rin recover o>erations. $he 8et-or+ranch Chief/ctin +ranch Chief is the 9%$ ;ead. &ther 9%$ mem#ers are com>risedof the &>erations +ranch Chief, VIRU! !ec"rit !te-ard and VIRU! s"#Aect mattereD>erts.

Controlled Unclassified Information (CUI) (When Filled In) !ection *


23/65



$he 9%$ -ill -or closel -ith the '$ to determine the eDtent of damae, recovertime o#Aectives, and o"tae im>acts. $his information -ill then #e relaed to the +C7Coordinator and a decision to activate the +C7 -ill #e made. $he -ill also -orclosel -ith the $R$ to ens"re timel recover of the sstem at the alternate

>rocessin site.

s disc"ssed in !ection 2.@ stat"s of recover o>erations determined d"rin dailteam lead meetins -ill #e >rovided to the +C7 Coordinator. dditionall, the 9%$ isres>onsi#le for revie-in the 7ersonnel ;ocation Control Forms on a dail #asis (referto !ection 4.).

1,4,2 Damage Assessment Team

$he 'amae ssessment $eam ('$) is res>onsi#le for determinin the eDtent ofdamae to the involved facilit, I$ sstem(s), and infrastr"ct"re, and recover time

o#Aectives. $his information -ill #e relaed to the 9%$. $he 8et-or $eam ;ead is the'$ ;ead. $he '$ is com>rised of 8et-or $eam >ersonnel, the VIRU! +"siness!te-ard, and VIRU! s"#Aect matter eD>erts. $he '$ ;ead -ill inform the +C7Coordinator and 9%$ ;ead of the damae assessment >roress and re>ort an iss"es.

1,4,3 Technical "ecovery Team

$he $echnical Recover $eam ($R$) is res>onsi#le for ens"rin that all a>>licationshosted on VIRU! are f"ll recovered at the alternate site to red"ce do-n time andloss of mission. $he &>erations $eam ;ead is the $R$ ;ead. $he $R$ is com>rised of&>erations $eam >ersonnel, the VIRU! $echnical !te-ard, and VIRU! s"#Aect matter

eD>erts. $he team is a"thoriBed access to the C&&7 8orth facilit to cond"ct VIRU!o>erations.

$R$ also has a oal to ens"re that the VIRU! a>>lication is readil availa#le in theevent of an emerenc, and verif that the a>>lication -hen recovered o>erates as>rorammed. $he $R$ -ill inform the 9%$ of the recover >roress and re>ort aniss"es.

2..!." Data


24/65



1,4,3,1Network "ecovery

$he $R$ is res>onsi#le for recover of the VIRU! net-or at the C&&7 8orth facilit.

1,4,4 'id0Tier Data Center Team

$he %id$ier 'ata Center $eam (%$'C$) is res>onsi#le for ens"rin that an hard-areand/or soft-are necessar to recover VIRU! o>erations are in >lace and f"nctional atthe C&&7 8orth facilit.



25/65



2 NOTI+ICATION AND ACTIVATION P-AS

In an emergency7 the CDCs to5 5riority is to 5reserve the health and safety of itsstaff laceeD>erience or A"dment. n em>loee enco"nterin a sit"ation that threatens life or>ro>ert ma decide to im>lement >ersonal safet res>onses a>>ro>riatel andimmediatel. ;ife m"st #e >rotected #efore >ro>ert in all instances. o-ever, the+C7 ens"res that a set of standard res>onse >roced"res are in >lace and are >ro>erldoc"mented in order to limit conf"sion and >rovide for #etter control and resol"tionof an emerenc sit"ation.

2,/ Notification;Activation Phase

$he 8otification/ctivation 7hase defines the initial actions taen once a sstemdisr">tion or emerenc has #een detected or a>>ears imminent. $his >hase incl"des>rocesses to notif recover >ersonnel, assess damae, and im>lement the VIRU! +C7.7redesinated C'C staff has #een assined Call $ree notification. $he Recover $eamsCall $ree is incl"ded at >>endiD F of the >lan.

2,1 Notification Proced*res

n emerenc event ma occ"r -ith or -itho"t >rior -arnin. $he notification>rocess -ill #e the same in either case. $he manner in -hich >ersonnel are notifiedde>ends on the t>e of emerenc and -hether the emerenc occ"rs d"rin or after

normal #"siness ho"rs. 8otification d"rin normal #"siness ho"rs -ill #e accom>lished# >hone, email, -ord of mo"th, cell >hone, or >aer. 8otification after normal#"siness ho"rs -ill #e cond"cted # activatin the $eam Call $ree.

$he first res>onder is to notif the +C7 Coordinator. ll no-n information

m"st #e relaed to the +C7 Coordinator.

$he +C7 Coordinator -ill contact the 9%$ ;ead and inform him of the

continenc event relain all no-n information. $he +C7 Coordinator is toinstr"ct the 9%$ ;ead to initiate the damae assessment >rocess.

$he 9%$ ;ead -ill contact the 'amae ssessment $eam ('$) ;ead and inform

him of the continenc event relain all no-n information. $he 9%$ ;ead -ill

instr"ct the '$ ;ead to commence assessment >roced"res.

$he '$ ;ead -ill notif team mem#ers and direct them to cond"ct an initial

damae assessment.

U>on activation of the VIRU! +C7, the 9%$ -ill contact the a>>lica#le recover

team leads of the continenc event. $he $eam ;eads -ill notif their teammem#ers "sin the $eam Call $ree.



26/65



2,2 Damage Assessment Proced*res

$he VIRU! +C7 -ill #e im>lemented follo-in an I$ emerenc event #ased on thedamae assessment >erformed # the '$. It is im>erative that the nat"re of the

emerenc and the eDtent of the damae #e assessed as ?"icl as conditions allo-.$he '$ -ill -or closel -ith the '$ ;ead and +C7 Coordinator d"rin the damaeassessment. 'amae ssessment ;os are incl"ded in the >lan at >>endices 8, &, and7 for "tiliBation.

fter the '$ has com>leted their assessment of the damae, the '$ ;ead -ill notifthe +C7 Coordinator to rela the res"lts. $he +C7 Coordinator -ill notif the 9%$;ead, -ho in t"rn -ill notif the 9%$. +ased on availa#le information the +C7Coordinator and 9%$ -ill determine the level of the continenc event. $here arethree desinated levels ;evel 1, 2 or 4. $he level of the continenc event -illdetermine if relocation is necessar and -hich alternate site -ill #e "sed. +ased on

damae assessment res"lts, the 9%$ -ill notif civil emerenc >ersonnel (e.., fire,>olice) assessments res"lts, as a>>ro>riate. $he follo-in ta#le eD>lains the threelevels.

$V$ INCIDNT CAT.O"& I'PACT "$OCAT

;evel 1 9nvironmental/sstemrelated (e.., >o-erfail"re, e?"i>ment fail"re)

Facilit is"naffected

7ossi#l, de>endinon the d"ration ofsstem fail"re

;evel 2 "man (e.., #om# threat,#ioloical or chemicalthreat)

Facilit is affected $o alternate>rocessin site

;evel 4 8at"ral/"man (e..,tornado, flood, fire, #om#)

Facilit is"ninha#ita#le

$o alternate>rocessin site

Tarecl"des f"rther o>eration

VIRU! -ill #e "navaila#le for more than 2 ho"rs, or

9Dtent of damae to sstems (>hsical, o>erational or cost) >recl"descontin"ed o>erations.



27/65



2,3,/ BCP Coordinator

&nce the damae has #een assessed, the +C7 Coordinator -ill determine -hetherrelocation is re?"ired, select the a>>ro>riate strate and #ein the recover >rocess6

$he +C7 Coordinator -ill notif I$!& manaement that a continenc event has#een declared and the +C7 activated.

U>on >lan activation, the +C7 Coordinator -ill notif the 9%$ ;ead and advise

if relocation is re?"ired.

$he +C7 Coordinator -ill notif the alternate >rocessin site that a continenc

event has #een declared and to >re>are the facilit for the oraniBationEsarrival.

$he +C7 Coordinator -ill notif the offsite #ac "> storae facilit that a

continenc event has #een declared and to shi> the necessar materials (asdetermined # the damae assessment) to the alternate >rocessin site.

$he +C7 Coordinator -ill notif remainin >ersonnel (via notification

>roced"res) on the eneral stat"s of the incident.

$he +C7 Coordinator -ill receive co>ies of com>leted 7ersonnel ;ocation

Control Form from the 9%$ ;ead on a dail #asis.

2,3,1 mergency 'anagement Team $ead

$he 9%$ ;ead is the liaison #et-een the 9%$ (and all other recover teams) and the+C7 Coordinator for information >rocessin. $he 9%$ ;ead notifies the '$ ;ead anddirects him to initiate the damae assessment >rocess.

tain all the availa#le information a#o"t the disaster and state of VIRU!

Convene the 9%$

Wor -ith the +C7 Coordinator and the '$ ;ead to develo> a recover

strate and

Im>lement the recover strate thro"h a 7lan of ction.

2,3,2 mergency 'anagement Team

$he 9%$ is com>rised of >ersonnel -ith a thoro"h no-lede of VIRU!. $he

interface -ith recover $eam ;eads and >ersonnel in eDec"tin related recovertass6

Interface -ith '$ and $R$

Interfaces -ith 8e-s and %edia re>orters or directs the re>orters to C'C %edia

Relations or 7"#lic Relations officials

Interfacin -ith $elecomm"nication vendors for re>airs



28/65



Interfacin -ith Critical 7artners

ssist -ith coordinatin 7hsical/7ersonnel !ec"rit

Initiate the 7roc"rement 7rocess and

Coordinate -ith Federal, !tate, and ;ocal 9merenc $eams, as necessar.

2,3,3 Damage Assessment Team $ead

$he '$ ;ead notifies team mem#ers and directs them to com>lete the assessment>roced"res o"tlined in !ection 4.4 to determine the eDtent of damae and estimatedrecover time. U>on receivin the initial assessment of the damae, the '$ ;ead -illnotif the +C7 Coordinator and 9%$ ;ead relain all no-n information.

U>on notification of a continenc event from the 9%$ ;ead, the '$ ;ead -ill6

tain all the availa#le information a#o"t the disaster and state of VIRU!

Convene the '$

9stimate the daner to >ersonnel

9stimate the time to restore VIRU!

9stimate -hat e?"i>ment -ill #e necessar to restore VIRU!

9stimate the time that -ill #e necessar to restore the facilit and

'etermine if the alternate >rocessin facilit sho"ld #e activated.

2,3,4 Damage Assessment Team

$he '$ is a technical ro"> res>onsi#le for assessin damae to VIRU! and itscom>onents. It is com>rised of >ersonnel -ith a thoro"h no-lede of VIRU!hard-are and e?"i>ment.

U>on notification from the '$ ;ead, the '$ -ill >roceed to the affected site anddetermine the eDtent of the damae ca"sed # the continenc event. $he '$ -illaddress the follo-in concerns6

'etermine the ca"se of the emerenc (8at"ral, "man, $echnical)

'etermine the area(s) affected (7ersonnel, Facilities, Reso"rces)

'etermine sta#ilit of the area (incl"din ne- disr">tions or daners)

'etermine the stat"s of the >hsical infrastr"ct"re

'etermine inventor and f"nctional stat"s of e?"i>ment

'etermine t>e of damae to e?"i>ment (e.., -ater, fire and heat)



29/65



'etermine items to #e re>laced (9?"i>ment, Facilities, Utilities, 8et-or

Infrastr"ct"re)

9stimate recover time and

Re>ort findins to the '$ ;ead.

$he initial assessment is intended to esta#lish the eDtent of damae to criticalhard-are (e.., data#ase servers), infrastr"ct"re (e.., VC, electrical, -ater,telecom, net-or, etc.), and the facilit that ho"ses the sstem. $he >rimar oal isto determine -here the recover sho"ld tae >lace and -hat hard-are m"st #eordered immediatel. It is eDtremel im>ortant that an e?"i>ment, manetic media,>a>er stocs, and other items at the damaed oriinal site #e >rotected to avoidf"rther damae. !ome e?"i>ment, hard-are, and soft-are ma #e salvaea#le orre>aira#le and save time in restorin o>erations. $he '$ -ill >rotect net-or assetsand minimiBe f"rther damae as m"ch as >ossi#le.

If estimates from this >rocess indicate that recover at the oriinal site -ill re?"iremore than 2 ho"rs, miration to the alternate >rocessin site is inevita#le.

s soon as >ractical a com>lete inventor of all salvaea#le e?"i>ment m"st #e taen,alon -ith estimates a#o"t -hen the e?"i>ment -ill #e read for "se (in the casethat re>airs or ref"r#ishment is re?"ired). $he inventor list sho"ld #e delivered tothe 9%$, "tiliBin facsimile if availa#le or # tele>hone. $he 9%$ -ill "se the list todetermine -hich items from the disaster recover hard-are and s">>lies lists m"st #e>roc"red to #ein re>lacin net-or devices.

$eam mem#ers sho"ld #e li#eral in their estimate of the time re?"ired to re>air orre>lace a damaed reso"rce. $ae into consideration cases -here one re>air cannot#ein "ntil another ste> is com>leted. 9stimates of re>air time sho"ld incl"deorderin, shi>>in, installation, and testin time.

In considerin the hard-are items, consider the e?"i>ment >riorit lists for each>latform >rovided in !ection of this >lan. $hese lists consist of the criticalcom>onents necessar for recover at the alternate >rocessin site. $he '$ -ill needto se>arate items into t-o ro">s. &ne ro"> -ill #e com>osed of items that aremissin or destroed. $he second -ill #e those that are considered salvaea#le. +asedon in>"t from this >rocess, the '$ can #ein the >rocess of ac?"irin re>lacements.

If a damae assessment cannot #e >erformed locall #eca"se of "nsafe conditions, the'$ -ill follo- the directive o"tlined in !ection 4.@.

2,4 Alternate Assessment Proced*res

In the event the '$ $eam or other recover teams cannot res>ond to the disastersite, the -ill cond"ct an assessment indirectl, #ased on re>orted information fromthe notification so"rces, and res>ond a>>ro>riatel to the disaster.

Controlled Unclassified Information (CUI) (When Filled In) !ection @


30/65





31/65



2,6 Personal $ocation Control +orm

7ersonnel ;ocation Control Form for each team is incl"ded at >>endiD + of the>lan. $he intent of this form is not to re>lace normal timesheet re>ortin, #"t to

>rovide the +C7 Coordinator -ith the location and sched"le of team mem#ers at aniven time. 'e>endin on the eD>ertise of recover team >ersonnel, some teammem#ers ma serve d"al recover roles (e.., data#ase restoration, net-orrecover). $he 7ersonnel ;ocation Control Form -ill allo- the +C7 Coordinator torevie- team mem#er sched"les and ens"re that mem#ers have not #een do"#lesched"led. !ho"ld this occ"r the +C7 Coordinator -ill determine -hich recover>rocess has >riorit. $he +C7 Coordinator -ill receive the com>leted 7ersonnel;ocation Control Forms on a dail #asis from s>ecific $eam ;eads.

Controlled Unclassified Information (CUI) (When Filled In) !ection *


32/65



3 "COV"& P-AS

Recover o>erations #ein after the VIRU! +C7 is activated, damae assessment(s) iscom>leted, Recover $eam ;eads are notified, and recover team mem#ers are

activated. $he recover >hase foc"ses on continenc meas"res to eDec"te tem>orarI$ >rocessin ca>a#ilities, re>air damae to the oriinal sstem, and restoreo>erational ca>a#ilities at the oriinal or ne- site. t the com>letion of the Recover7hase, VIRU! -ill #e o>erational and >erformin its desinated f"nctions. $hefollo-in ta#le clearl de>icts recover >riorities.

"COV"& P"IO"IT& -A"DA" SO+TA"

1 Cisco 20@ Ro"ter Cisco I&!

2 Cisco @00% Ro"ter Cisco I&!

4 Cisco 2@1N% Ro"ter Cisco I&!

Cisco 2@22 Ro"ter Cisco I&!@ Com>a?/'ell !ervers (ome

&ffice9'%!, We#, In>rise)Win2, !!, +laise,!#ase/7o-er#"ilder, +orlandIn>rise, $rend ntivir"s,+lacIC9 server >rotect

!"n !"nFire 20R (ome&ffice '+ !erver)

!olaris , !#ase

* !"n 9nter>rise 94000 ('+Warm !tand#)

!olaris , !#ase

!"n !>arc/@ (!endmail !erver) !olaris

5 !"n !"nfire V0 (naltic

!erver)

!olaris , !#ase, !!

10 !"n 9nter>rise @0 ('+!erver)

!olaris , !#ase, !!

Tarovidesdetailed >roced"res and critical reso"rce information to facilitate recover ofca>a#ilities at the alternate >rocessin site. It foc"ses on I$, and is commonl limitedto maAor disr">tions -ith lonterm effects. Refer to the 'R7 incl"ded as ttachment to the >lan.

3,/ "ecovery Planning

e activit in >lannin for disaster recover is to identif e sstem com>onentsand envision the t>es of fail"res that ma occ"r. VIRU! consists of a fo"ndationaldata and services infrastr"ct"re overlaid -ith domains>ecific a>>lications that often>lace "ni?"e demands on the fo"ndation. s o"tlined in the VIRU! +I$ the fail"re of



33/65



fo"ndational s"#sstems, com>onents, or a>>lications ma res"lt in different im>actsde>endin on the fail"re involved.

In the case of VIRU!, the overall #"siness im>act felt is most sinificant for fail"res of

the O'$+!9P eneral infrastr"ct"re s"#sstem and the O'9&C !">>ortP domains>ecific sec"re intranet a>>lication.

3,1 "ecovery .oal

$he +C7 identifies the teams re?"ired to cond"ct the >hsical recover >rocess toens"re contin"it thro"ho"t the recover >roression. $he 9%$ ;ead -ill contactother recover $eam ;eads as needed and esta#lish a recover strate. $he $R$ -ill>erform technical o>erations as directed in str"ct"red >hases

7hase 16+lternate Processing Site Coordination Reco'eryL $he coordination of the

restoration of all critical I$ services at the C&&7 8orth facilit.

7hase 26 .et/or0 Reco'eryL $he >lannin and eDec"tion of recover efforts relatedto data and video comm"nications.

7hase 46 System RestorationL $he coordination of the restoration of allinfrastr"ct"res#ased com>"ter services, voice, and data comm"nications.

$he 'R7 encom>asses defined recover oals and >rocesses. Recover is accom>lished# havin %anaerial, Res>onse, and !">>ort $eams actin ">on a continenc eventthat activates the VIRU! +C7. 'R7 >roced"res for recoverin VIRU! at the C&&7 8orth

facilit and %$'C are o"tlined for the 9%$, '$, $R$, and %$'C$. 9ach >roced"re iseDec"ted in the se?"ence it is >resented in order to maintain efficient o>erations.

3,1,/ Technical "ecovery Team $ead

$he $R$ ;ead notifies team mem#ers and directs them to initiate the recover of thesstem at the alternate >rocessin site. U>on recover of the sstem, the $R$ ;ead-ill notif the +C7 Coordinator and 9%$ ;ead relain all no-n information.

U>on notification of a continenc event from the 9%$ ;ead, the $R$ ;ead -ill6

tain all the availa#le information a#o"t the disaster and state of VIRU! Convene the $R$

9stimate the time to restore VIRU! at the alternate >rocessin site and

'etermine -hat e?"i>ment -ill #e necessar to restore VIRU!



34/65



3,1,1 Technical "ecovery Team

$he $R$ is a technical ro"> res>onsi#le for recoverin o>eration of VIRU! at thealternate >rocessin site. It is com>rised of >ersonnel -ith a thoro"h no-lede of

VIRU! hard-are and e?"i>ment.

U>on notification from the $R$ ;ead, the $R$ -ill res>ond to the alternate >rocessinsite and initiate recover of the sstem. $eam mem#ers -ill #e informed of alla>>lica#le information.$he $R$ -ill >erform the follo-in f"nctions6

Q 'etermine f"nctional stat"s of e?"i>ment

Q Restore the infrastr"ct"re that s">>orts VIRU! (as necessar)

Q Restore all a>>lications and services hosted on the sstem

Q Restore the latest VIRU! data#ase and ens"re that all VIRU!related data#asesare availa#le and verif that the recovered data is acc"rate

Q Restore the VIRU! net-or

Q $est sstem o>erations to ens"re f"ll f"nctionalit

Q Verif recover and f"ll o>erations stat"s of the sstem and

Q Re>ort recover of the sstem to the $R$ ;ead.



35/65



"CONSTIT#TION P-AS ("et*rn to Normal O5erations)

Reconstit"tion o>erations o"tline activities necessar for restorin VIRU! o>erationsat theoriinal or ne- site. When the 8&C at the oriinal or ne- site has #een

restored, VIRU! o>erations at the C&&7 8orth facilit and %$'Cm"st #e transitioned#ac. $he oal is to >rovide a seamless transition of o>erations from the C&&7 8orthfacilit to the 8&C.#ntil the 5rimary system is restored and tested7 the contingency system willcontin*e to o5erate,

4,/ Original or New Site "estoration

$he VIRU! Reconstit"tion 7lan is desined to >rovide for all as>ects of reconstit"tion>lannin and eDec"tion concernin the sstem. 7roced"res are defined to restore or

re>lace the oriinal site so that normal o>erations ma #e transferred from thealternate >rocessin site.

Infrastr*ct*re "econstit*tion

$he follo-in ste>s m"st #e "ndertaen to reconstit"te the infrastr"ct"re thats">>orts VIRU!6

Install 100%# 9thernet #ac#one

Install and confi"re all sstem ro"ters

Verif connectivit -ith C'C W8

Install and confi"re !8, data#ase servers, a>>lication servers, and

-orstations

Install 8et-or &! and a>>lica#le >atches and

Install and confi"re -orstation and server &! and a>>lica#le >atches.

Dataro>er &! -ith >atches installed

Verif net-or connections -orin >ro>erl

Verif "ser acco"nts re?"ired # !K; server are created and have >ro>er

access rihts for &! and net-or

Install !K; server from discs

'o-nload and install >atches from %icrosoft -e#site

Restore data#ases from Iron %o"ntain #ac">s



36/65



Restore/Create "ser acco"nts for access to data#ases

Create #ac"> and re>lication >roced"res and

Inform "sers the ma #ein connectin a>>lications.

A55lications and Services "econstit*tion

$he follo-in ste>s m"st #e "ndertaen to reconstit"te the a>>lications and servicesof VIRU!6

Confirm that data#ases are restored

o !'9 sister data#ases

o 'imensions

Restore 'imensions file re>ositor

Install 'imensions on ne- server +"ild ne- Intranet !ervers

o %ae s"re !ervers have &!, II!, and >rere?"isites accordin to installation

man"als

o Install and Confi"re :299 on Intranet !ervers

o !et"> sec"rit

9Dtract code from 'imensions to Intranet !ervers

o Verif code -ors and meets sec"rit re?"irements

9sta#lish re>lication to '%< servers for Internet a>>lications

o Verif code -ors for Internet a>>lications

%onitor a>>lications and activit

4,/,/ Technical "ecovery Team

9ns"re ade?"ate infrastr"ct"re s">>ort, s"ch as electrical, >o-er, -ater,

telecomm"nications, sec"rit, environmental controls, office e?"i>ment, ands">>lies

Install sstem hard-are, soft-are, and firm-are

9sta#lish connectivit and interfaces -ith net-or com>onents and eDternal

sstems and

$est I$ e?"i>ment and telecomm"nications connections.



37/65



4,1 Conc*rrent Processing

7roced"res are defined to o>erate the continenc sstem in coordination -ith thesstem at the oriinal or ne- site. $hese >roced"res incl"de testin the oriinal or

ne- sstem "ntil it is f"nctionin >ro>erl and the continenc sstem is sh"t do-nrad"all.

If a net-or device or server fail"re re?"ires a com>lete re>lacement or re#"ild,there sho"ld #e a three to fiveda >eriod of conc"rrent o>eration -ith there>lacement net-or device or server still in >lace, d"rin -hich time the vendorm"st sho- that connectivit is reesta#lished, data is c"rrent and com>lete, and thatall f"nctionalit, incl"din re>lication, is restored. fter that time, f"ll >rod"ctiono>erations can #e c"t over to the ne- net-or device or server, conc"rrento>erations terminated and the stand# net-or device or server ret"rned to stand#stat"s.

4,1,/ Technical "ecovery Team

$est sstem o>erations to ens"re f"ll f"nctionalit and

+ac "> o>erational data on the continenc sstem and ">load to the restored

sstem.

4,2 Plan Deactivation

7roced"res are defined to eliminate the alternate site of an e?"i>ment or othermaterials #elonin to the oraniBation, -ith a foc"s on handlin sensitive

information.

$he follo-in >roced"res are for ret"rnin to normal o>erations after emerenc(continenc) o>erations6

When com>"ter o>erations are transferred #ac either to the oriinal data

center or to a ne- re>lacement data center, em>loees are to #e e>tinformed. $his -ill #e >erformed # the +C7 Coordinator.

s com>"ter o>erations are transferred #ac, the continenc o>eration -ill

ver ?"icl #e >hased do-n. $he $R$ is res>onsi#le for ens"rin that all>ro>ert and materials #elonin to the oraniBation are removed from the

continenc site, and to "se d"e care and ca"tion to >rotect all data andsoft-are.

$he +C7 Coordinator is res>onsi#le to maintain a f"ll state of readiness d"rinand >artic"larl after ret"rnin to normal o>erations. $he $R$ -ill #e directedto ret"rn materials #ac to their >ro>er offsite storae, incl"din c"rrent#ac"> ta>es.



38/65



n official statement, via memorand"m, -ill #e made to all em>loees statin

that the emerenc is over and that o>erations are no- or soon to #e ret"rnedto normal. $he VIRU! +C7 -ill #e deactivated.

4,2,/ Technical "ecovery Team %aterials, e?"i>ment, and #ac"> media sho"ld #e >ro>erl >acaed, la#eled,

and shi>>ed to the a>>ro>riate location(s).

!ec"re, remove, and/or relocate all sensitive materials at the alternate

>rocessin site

rrane for recover >ersonnel to ret"rn to the oriinal or ne- facilit

!h"t do-n the continenc sstem

$erminate continenc o>erations.

$he final activit of the disaster recover >rocess -ill #e the meetin and de#riefinof the +C7 Coordinator, 9%$, '$, and Recover $eams concernin the activities of thedisaster recover. $he +C7 Coordinator is res>onsi#le to mae s"re that events,>ro#lems and sol"tions, etc., are doc"mented. &nce doc"mentation has #eencom>leted, the 9%$, '$, and Recover $eams can #e deactivated. '"rin the neDtrevie- of the >lan, the +C7 Coordinator -ill #e res>onsi#le to ens"re that an lessonslearned are incor>orated into the >lan.



39/65



6 P$AN T"AININ.7 TSTIN.7 AND 8"CISS

F7C @ >rovides "idance to Federal 9Dec"tive +ranch 'e>artments and aencies fordevelo>in via#le and eDec"ta#le trainin and eDercisin >rorams.

6,/ BCP Training

+C7 trainin of VIRU! recover team(s) >ersonnel is an interal com>onent of the +C7>rocess. $he oal of trainin is to ens"re that recover team >ersonnel are a#le toeDec"te their res>ective recover roles -itho"t the aid of the +C7.

$he sstem ste-ards and +C7 Coordinator -ill develo> a via#le and eDec"ta#letrainin >roram. $rainin -ill #e cond"cted at least ann"all, and -hensinificant chanes are made to the I$ sstem, s">>orted #"siness >rocess, orthe +C7. 8e- em>loees -ho -ill have continenc >lan res>onsi#ilities -illreceive trainin >rom>tl after hire.

$he +C7 Coordinator sho"ld #e res>onsi#le for identifin essential traininre?"irements and trainin team >ersonnel. $rainin m"st #e doc"mented. 7ersonnel trainin -ill consist of individ"al and team trainin to ens"re

c"rrenc of no-lede and sills necessar to im>lement the +C7 and carr o"tessential f"nctions. $rainin -ill incor>orate sim"lated events to facilitateeffective res>onse # >ersonnel in a crisis sit"ation.

$he sstem ste-ards and +C7 Coordinator -ill ens"re that trainin for

>ersonnel -ith >lan res>onsi#ilities com>lements >lan testin and afteractionre>ort recommendations.

6,1 BCP Testing

+C7 testin is another critical element of the continenc >rocess, and -ill #econd"cted at least ann"all, and -hen sinificant chanes are made to the I$ sstem,s">>orted #"siness >rocess, or the +C7. $estin sho"ld identif an deficiencies in the+C7 in addition to eval"atin the a#ilit of recover team(s) >ersonnel to im>lementit. $he s>ecific o#Aectives of testin the +C7 are6

Cond"ct a >erformance#ased test of the recover >olicies and >roced"res

identified in the VIRU! +C7 $est the a#ilit of C'C I$ >ersonnel to accom>lish the >roced"res esta#lished in

the VIRU! +C7 for an emerenc $est and identif the reso"rces needed to eDec"te the >roced"res defined

-ithin the VIRU! +C7 Identif and correct an emerenc -eanesses -ithin the VIRU! +C7 and

Cond"ct familiariBation and trainin in the testin environment on the VIRU!

+C7 >rocess and >roced"res.

9ach element of the +C7 sho"ld #e tested first individ"all and then as a -hole toconfirm the acc"rac of recover >roced"res and overall effectiveness. $he +C7Coordinator is res>onsi#le for testin and eDercisin the >lan.



40/65



6,2 BCP Test >ercises

It is important that an exercise never disrupts normal operations.

$he follo-in areas sho"ld #e addressed d"rin the continenc eDercise6 !stem recover on an alternate >latform from #ac"> media

Coordination amon recover teams

Internal and eDternal connectivit

!stem >erformance "sin alternate e?"i>ment

Restoration of normal o>erations

8otification >roced"res

!stem recover at the alternate >rocessin site (for hihim>act sstems onl)

$he level of effort related to the cond"ct of eDercises -ill corres>ond -ith the C

three ear life ccle and escalate from ear one thro"h ear three. variet ofeDercise t>es >re>are mem#ers of the recover team(s) to deal -ith the com>leDroles, res>onsi#ilities, and individ"al/team interactions necessar d"rin res>onse toan incident at the C'C Ro#al Cam>"s, tlantaarea facilities, or Field locations. $hemaAor t>es of eDercises are descri#ed #elo-.

=ear 1 L $a#leto> 9Dercise=ear 2 L F"nctional 9Dercise=ear 4 L F"ll!cale 9Dercise

6,2,/ Taercises$a#leto> eDercises #rin mem#ers of the res>onse oraniBations (i.e., +C7

Coordinator, 9%$, '$, $R$, and %$'C$) toether in a conference room settin todisc"ss ho- the -o"ld react to an emerenc scenario. $his is a costeffective andefficient -a to identif areas of overla> and conf"sion #efore cond"ctin moredemandin eDercise activities. n 9Dercise Facilitator ee>s team mem#ers foc"sedon the >ertinent iss"es and ens"res o#Aectives are accom>lished.n 9val"ator(s) ca>t"res the >rimar disc"ssions and decisions for incl"sion in theeval"ation re>ort (afteraction re>ort).

6,2,1 +*nctional >ercisesF"nctional eDercises are "sed to validate s>ecific f"nctions -ithin the res>onseoraniBation. $>icall, these eDercises address a >artic"lar f"nction of the +C7 (e..,

emerenc notification and mo#iliBation, or data recover). 7artici>ants are ased toeval"ate ho- -ell the necessar f"nctions -ere >erformed and identif lessonslearned and areas for im>rovement. n 9val"ator(s) ca>t"res the >rimar recoveractivit and decisions for incl"sion in the eval"ation re>ort (afteraction re>ort).



41/65



6,2,2 +*ll0Scale >ercisesF"llscale eDercises are the most realistic of all eDercise activities, involvin asim"lated I$ emerenc sit"ation or crisis. $hese eDercises often involve m"lti>leres>onse teams, and ma incl"de comm"nit res>onse oraniBations. Controllers/

9val"ators assist >artici>ants to accom>lish their activities -ithin the conteDt of theeDercise and cond"ct a de#riefin session to ather lessons learned. formal -ritteneval"ation re>ort (afteraction re>ort) hihlihts the strenths and -eanesses of>lans, >roced"res, and teams. $hese eDercises re?"ire a sinificant amo"nt ofcommitment, #oth in terms of eD>ense and la#or.



42/65


43/65



# P$AN APPNDICS;ATTAC-'NTS

:,/ A55endices

. cronms

+. 8otification Roster

C. %anaement 8otification Checlist

'. Recover $eams 'iaram

9. Recover $eams 8otification Checlist

F. Recover $eams Call $ree

3. e C"stomers Call $ree

. Critical Vendors Call $ree

I. 9%$ 7ersonnel ;ocation Control Form

:. '$ 7ersonnel ;ocation Control Form

. $R$ 7ersonnel ;ocation Control Form

;. %$'C$ 7ersonnel ;ocation Control Form

%. 'rivin 'irections to !tain rea

8. I$ 9?"i>ment 'amae ssessment ;o

&. Facilit/Room 'amae ssessment ;o

7. FiDt"res/F"rnishins 'amae ssessment ;o

:,1 Attachments

1. VIRU! +C7 'istri#"tion ;ist

2. 9?"i>ment and !>ecifications

4. !ervice ;evel reements/%emorand"ms of Understandin

. VIRU! !tandard &>eratin 7roced"res

@. VIRU! 'isaster Recover 7lan

. &cc">ant 9merenc 7lan

*. +"siness Res"m>tion 7lan. Related +C7s

5. Interated 9merenc %anaement 7lan

Controlled Unclassified Information (CUI) (When Filled In) !ection +


44/65



APPNDI8 A

AC"ON&'S

Acronym Definition

8I!$ 8ational Instit"te for !tandards and $echnolo

IR%& Information Reso"rces %anaement &ffice

%$'C %id $ier 'ata Center

C'C Centers for 'isease Control and 7revention

'C$! 'ata Collection and $ransformation !stem

9$; 'ata 9Dtract, $ransform and ;oad!! !tatistical nalsis !stems

9!RI 9nvironmental !stems Research Instit"te

!'8 !ec"re 'ata 8et-or

rcI%! rc Internet %a> !erver

!F$7 !ec"re File $ransfer 7rotocol

!! !ec"re !hell

VC! Veritas Cl"ster !erver

I!! Internet !stems !erver

I$!& Information $echnolo !ervices &ffice

Controlled Unclassified Information (CUI) (When Filled In) !ection !


45/65


46/65

Controlled Unclassified Information (CUI) (When Filled In)C'C VIRU! +"siness Contin"it 7lan Version 1.0/Rev. 1, 02/0

APPNDI8 B

NOTI+ICATION "OST"

Name;Title

Phones Office7'o


47/65


APPNDI8 C

'ANA.'NT NOTI+ICATION C-C$IST

$his checlist -ill #e "sed # the +C7 Coordinator -hen notifin the 9merenc

%anaement ;ead, and # the 9merenc %anaement $eam -hen notifinRecover $eam ;eads.

+. O


48/65


APPNDI8 D

"COV"& TA'S DIA."A'

When notified # the +C7 Coordinator that the +C7 has #een activated, the9merenc %anaement $eam -ill ens"re the a>>ro>riate Recover $eam ;eads arenotified and Recover $eams a>>rised of the sit"ation (not all teams may 2e re,uired

&or all e'ents#.



49/65


APPNDI8

"COV"& TA'S NOTI+ICATION C-C$IST

When notified # the 9merenc %anaement $eam that the +C7 has #een

activated, the Recover $eam ;ead -ill ens"re the receive the follo-ininformation and relas this information to the Recover $eam %em#ers6

/, O


50/65


APPNDI8 +

"COV"& TA'SCA$$ T"

P"I'A"&

NA'O"P-ON

'OBI$ P-ON;

B$ACB""&

-O'P-ON

TA' O" 0'AI$

TI'CA$$D

CONTACTD

&S;NO0000000000

++ T

++ T

A$T"NAT

NA'O"P-ON

'OBI$P-ON;PA."

-O'P-ON

TA' O" 0'AI$

TI'CA$$D

CONTACTD

&S;NO



51/65


APPNDI8 .

& C#STO'"S CA$$ T"

7rod"ct/!ervice6C"stomer 8ame6

C"stomer ddress6

Contact 7erson6 7hone 8o.62 o"r 8o.6FN 8o.6&ther 8o.6

lternate Contact6

Comments6

7rod"ct/!ervice6

C"stomer 8ame6

C"stomer ddress6

Contact 7erson6 7hone 8o.62 o"r 8o.6

FN 8o.6&ther 8o.6

lternate Contact6

Comments6



52/65


APPNDI8 -

C"ITICA$ VNDO"S CA$$ T"

7rod"ct/!ervice6Vendor 8ame/I'6

Vendor ddress6


lternate Contact6

Comments6

7rod"ct/!ervice6

Vendor 8ame/I'6

Vendor ddress6


lternate Contact6

Comments6



53/65


APPNDI8 I

P"SONN$ $OCATION CONT"O$ +O"'

'ate6 Com>leted #6

'".NC& 'ANA.'NT TA'

NA' "COV"& $OCATION P-ON N#'B" O" SC-D#$

+"O'O" SC-D#$

TO

NOT +orm m*st


54/65


APPNDI8 !

P"SONN$ $OCATION CONT"O$ +O"'

'ate6 Com>leted #6

DA'A. ASSSS'NT TA'

NA' "COV"& $OCATION P-ON N#'B" O" SC-D#$

+"O'O" SC-D#$

TO

NOT +orm m*st


55/65

Controlled Unclassified Information (CUI) (When Filled In)C'C VIRU! +"siness Contin"it 7lan Version 1.0/

Documents

BCP Format Guide 07112007