Associate Level Material
Appendix D
Disaster Recovery Plan
Student Name: Casey DeCesare
University of Phoenix
IT/244 Intro to IT Security
Instructor’s Name: Scott Sabo
Date: 4/27/14 Disaster Recovery Plan
Due in Week Three: For your selected scenario, describe the key elements of the Disaster Recovery Plan to be used in case of a disaster and the plan for testing the DRP.
1 Risk Assessment
1 Critical business processes
List the mission-critical business systems and services that must be protected by the DRP.
The mission-critical business systems and services that must be protected by this DRP are: Payroll, Human Resource Data, POS backup media, and Web Servers
…show more content…
Warm sites are cheaper than hot sites but require more effort. On the other hand, they are more expensive than cold-site facilities but less labor intensive and more likely to be effective in a disaster. Also, having a backup and retention site to work from, and recover from for the main servers and web services is a good idea.
3 Disaster Recovery Test Plan
For each testing method listed, briefly describe each method and your rationale for why it will or will not be included in your DRP test plan.
1 Walk-throughs
This test plan would be a great way for the key personnel to come together and formulate a plan of action in the event of an emergency. Due to Bloom Design group being spread across a large area it might require some video conferencing and traveling on the part of some employees.
2 Simulations
I think this test plan is the most effective when compared to the others. Simulating an actual emergency is a great way for people to get used to operating in a critical time under pressure. This will show you where your people have their strengths and weaknesses when trying to recover from a disaster.
3 Checklists
This passive type of testing would be a good system to implement on a weekly or monthly basis depending on the needs of the company. This will help in detecting problems before they become a major issue.
4 Parallel testing
Since
A Disaster Recovery Plan (DRP) focuses on the recovery of IT systems, applications, and data in the
Tragic events that cause damage to property and life may destroy the social, cultural and economic life of a community. Communities must be engaged in the various phases from prevention to recovery to build disaster resilient communities. In order to do this, there must be a disaster preparedness plan in place that involves multiple people in various roles.
Presentation regarding the university’s Disaster Recovery Plan/Enterprise Continuity Plan including: basic structures; roles within the DRP/ECP plan; areas within a company if addressed improve resilience to catastrophic events, and an employee awareness campaign.
In day to day operations, uncertainties do occur. Henceforth it would be important to have a contingent and well detailed disaster preparedness plan and procedures. Healthcare systems, on a day to day basis, are faced with emergencies in form of disasters. As a result, majority of medical centers have well-structured exit plans in the event of a disaster occurring("Hospital Disaster Preparedness: Your Guide to Getting Started - Emergency Preparedness", 2011). However, this essay will aim at interviewing one of the top disaster preparedness staffat the Houston Methodist Hospital. In the interview, I will seek to identify the top three disasters that the Houston Methodist Hospital is prepared for. Similarly, in the interview, I would seek to identify the top lessons learnt from disaster preparedness at the hospitals.As it concludes it would summarize the findings with regards to the interview stated below. Below is an excerpt from the interview to answer the two aforementioned questions.
5. Of the three Systems/Application Domain risks, threats, and vulnerabilities identified, which one requires a disaster recovery plan and business continuity plan to maintain continued operations during a catastrophic outage? The mainframe or complete data loss. This should have an extensive DRP.
Due in Week Three: For your selected scenario, describe the key elements of the Disaster Recovery Plan to be used in case of a disaster and the plan for testing the DRP.
Additionally, the preparation phase covers all fundamentals of an incident response plan, reports interaction among basics, and increases to emergency response planning at some point in the life of an incident in order to develop the necessary trust relationships that will be fully exercised during the stress of a real crisis. According to Whitman (2012) “The Disaster Recovery Plan Similar in structure to the IR plan, the DR plan provides detailed guidance in the event of a disaster. It is organized by the type or nature of the disaster, and specifies recovery procedures during and after each type of disaster. It also provides details on the roles and responsibilities of the people involved in the disaster recovery effort, and identifies the personnel and agencies that must be notified. Just as the IR plan must be tested, so must the DR plan, using the same testing mechanisms.” (P. 231). Many of the same principles of incident response apply to disaster recovery such as fundamentals must be clearly established, roles and responsibilities must be visibly outlined, someone must initiate the alert schedule and notify key personnel, someone must have the responsibility of the documentation of the disaster and only if it is possible, attempts must be made to moderate the impact of the disaster on the operations of the organization.
Of the three Systems/Application Domain risks, threats, and vulnerabilities identified, which one requires a disaster recovery plan and a business continuity plan to maintain continued operations during a catastrophic outage?
When taking a look deep into an organization’s different departmental operation, it becomes clear how to plan to protect the most data and also which areas is more operation critical. While preventing interruption is the most important aspect of this plan, no one can predict the weather or any other attack. As part of the steps to implement the business continuity plan, Sunshine Machine Works will need to document a risk management plan, business impact analysis, incident response plan, plan activation, incident response team, communications, contact list and recovery plan section. Once all has been documented, the organization will need to test, evaluate and update schedule.
Every business and organization can experience a serious incident which can prevent it from continuing normal operations. This can happen any day at any time. The potential causes are many and varied: flood, explosion, computer malfunction, accident, grievous act... the list is endless.
This is a disaster recovery plan is prepared for Bain & Company. This plan establishes goals,
Disaster recovery is the process of an organisation uses to recover access the data, and also hardware that are needed to recollect the performance to be in normal position after a disaster occurs. While disaster recovery plans have to be focus in every aspect in any organisation and bringing the gap closure after destruction it can be like data, hardware, or software have been lost and the manpower that composes much of any organisation.
Disaster Recovery Planning is the critical factor that can prevent headaches or nightmares experienced by an organization in times of disaster. Having a disaster recovery plan marks the difference between organizations that can successfully manage crises with minimal cost, effort and with maximum speed, and those organizations that cannot. By having back-up plans, not only for equipment and network recovery, but also detailed disaster recovery plans that precisely outline what steps each person involved in recovery efforts should undertake, an organization can improve their recovery time and minimize the disrupted time for their normal business functions. Thus it is essential that disaster recovery plans are carefully laid
Modifications to any part of the plan will be updated immediately and made aware to all personnel involved.
Disaster recovery plan (DRP) is a clearly defined and documented plan of action for use at the time of a crisis. Typically a plan will cover all the key personnel, resources, services and actions required to implement and manage the DR process (comission, 2014).