Contingency Management Plan

Contingency Plan in the Event of Defacement / Natural Calamity

Defacement Protection Policy:

  • Website is audited against Security & Performance.
  • Any application level modification on the website implies re-audit.
  • All the server configuration and logs are monitored timely.
  • Only System administrators’ users are allowed to access the servers for administration and configuration tasks.
  • Contents are updated through a secured CMS.

Defacement:

As soon as the Website Information Manager gets the information regarding the defacement, the following steps will be taken:

  • According to the degree of defacement, the site is stopped or continued partially.
  • Log files are analyzed to troubleshoot the source of defacement and blocking of the service.
  • The Website is started from DR site in case of complete loss of data or during long downtime.
  • Log files will be given to the security division for analysis.
  • Based on security recommendations, all vulnerabilities are fixed, and the application is re-audited.

Time for Restoration after Defacement:

The time taken for restoration of the website depends on the degree of defacement and services affected by the defacement.