Reading: Douglas, T. (2018). What can we learn from Atlanta? Government Technology State & Local Articles. (Links to an external site.)
Instructions: For this case study you need to read the linked article above and think about which Business Continuity Planning (Links to an external site.) objectives the City of Atlanta may have neglected. Consider how you would approach Business Continuity Planning in a large government organization while dealing with competing budgetary and political issues. Include at least five references. Both in-text citations and the bibliography should be in the APA format. I am not looking for an overly technical answer. Focus on the goals of business continuity planning and importance of business impact analysis.
I provided some relevant resources and you may skim them when you work on this case study. Click the hyperlinks (inserted in the text) to access those references.
Case Study Questions:
As you read, how would ransomware (Links to an external site.) affect your data backup strategy?
Why should the Recovery Time Objective (RTO (Links to an external site.)) always be shorter than Maximum Tolerable Downtime (MTD)?
For each of the following three questions, your answer should be in approximately 250 words. You will play the role of cybersecurity consultant with the City of Atlanta prior to the 2018 ransomware attack. Consider the organizational make-up of a typical city government along competing budgetary and political priorities. Think about limitations and problems (Links to an external site.) unique to cybersecurity teams that your local city government may face.
What business continuity planning best-practices would you recommend to the City of Atlanta?
Should the City of Atlanta have paid the ransom? Why or why not? (No wrong answers here).
Explain what other city governments can learn from the incident at the City of Atlanta.