What to do “After” your IT guy gets hit by a truck! April 1, 2005.

Slides:



Advertisements
Similar presentations
Copyright 2006 Mid-City Offices Systems. Busy people… How would your business be affected, if you suddenly lost all of your computer data? Rush through.
Advertisements

Security and Control Soetam Rizky. Why Systems Are Vulnerable ?
Information Technology Disaster Recovery Awareness Program.
Business Continuity Training & Awareness by Sulia Toutai (ANZ)
TK3333 Software Management Topic 7: Schedule Control.
BUSINESS CONTINUITY MANAGEMENT THROUGH STANDARDS AND BEST PRACTICES Jasmina Trajkovski, CISA, CISM.
Maximizing Uptime and Your Firm's Bottom Line: Understanding risk and budget when evaluating business continuity & disaster recovery protocols Michael.
Business Continuity Section 3(chapter 8) BC:ISMDR:BEIT:VIII:chap8:Madhu N PIIT1.
Chapter 13 Managing Computer and Data Resources. Introduction A disciplined, systematic approach is needed for management success Problem Management,
Business Continuity Disaster Recovery Risk Management How do these fit into a Framework?
1 Disaster Recovery “Protecting City Data” Ron Bergman First Deputy Commissioner Gregory Neuhaus Assistant Commissioner THE CITY OF NEW YORK.
Introduction to Business Continuity Planning An Introduction to the Business Continuity Planning Process Including Developing your Process and the Plans.
© 2009 EMC Corporation. All rights reserved. Introduction to Business Continuity Module 3.1.
Business Continuity Planning (BCP) & Disaster Recovery Planning (DRP)
Business Continuity The Business of Keeping A Business Running John Dooly Senior Analyst CEMA Region Prague, Czech Republic.
Business Continuity Planning and Disaster Recovery Planning
Saving Your Business from a Data Loss Randy Clark.
Contractors CDM Compliance Kit CDM Contractors CDM Compliance Kit PRODUCT OVERVIEW.
Controlling Risk by Managing Change Jessica Blaydes & Gary Fobare Honeywell Aerospace 2013 Region IX Workshop.
Business Continuity Check List PageOne. - Why Does Your Business Need A Continuity Checklist? Should the unexpected occur, your business will be able.
Topic of Session Disaster Recovery Planning Who Am I Joe Noll Founder and President of RKL eSolutions LLC Partner at Reinsel Kuntz Lesher LLP Microsoft.
John Graham – STRATEGIC Information Group Steve Lamb - QAD Disaster Recovery Planning MMUG Spring 2013 March 19, 2013 Cleveland, OH 03/19/2013MMUG Cleveland.
IT Assurance and Reliability Why Should You Care? Richard Oppenheim, CPA, CITP President, SysTrust Services Corporation Presented to ISACA Regional Meeting.
RBTC: Business Continuity 101 July 18, What is Business Continuity? Scenario Part 1 Why is BC important? What types of plans are needed? How do.
Network Security Policy Anna Nash MBA 737. Agenda Overview Goals Components Success Factors Common Barriers Importance Questions.
Module 3 Develop the Plan Planning for Emergencies – For Small Business –
DotHill Systems Data Management Services. Page 2 Agenda Why protect your data?  Causes of data loss  Hardware data protection  DMS data protection.
2015 Risky Business Week Welcome to the 2015 Risky Business Week presentation regarding disaster recovery Risky Business Week.
David N. Wozei Systems Administrator, IT Auditor.
1 SECURITY & HIPAA DATA ENSURE INC. 798 PARK AVE. NW SUITE 204 NORTON, VA (276) D E.
C ONNECTING FOR A R ESILIENT A MERICA Business Continuity Planning (BCP) & Disaster Recovery Planning (DRP) Skip Breeden.
 FFC backs up all of its data each day. It stores its most recent daily backup once a week at a company owned offsite location. FFC also stores the most.
1 Availability Policy (slides from Clement Chen and Craig Lewis)
Service Overview CA- IROD- Instant Recovery on Demand CRITICAL SERVER CONTINUITY, NON-STOP OPERATIONS, TOTAL DATA PROTECTION Turnkey solution that provides.
 Virtual Solutions. Are you protected?  Back up procedures  Disaster recovery plan  Information security policies in action.
©2006 Merge eMed. All Rights Reserved. Energize Your Workflow 2006 User Group Meeting May 7-9, 2006 Disaster Recovery Michael Leonard.
10-January-2003cse Context © 2003 University of Washington1 What is a development project? CSE 403, Winter 2003 Software Engineering
Business Continuity Management For Project Managers.
Holistic Approach to Security
Lesson 7-Managing Risk. Overview Defining risk. Identifying the risk to an organization. Measuring risk.
The State of Computer & Data Security in Corporations Independent Survey.
CIT 470: Advanced Network and System AdministrationSlide #1 CIT 470: Advanced Network and System Administration Disaster Recovery.
TIJARA Provincial Economic Growth Program Business Continuity / Disaster Recovery Planning Introduction and Workshop Outline Prepared by Larry SanBoeuf.
This course, Essential Records Seminar, is part of
Engineering and Management of Secure Computer Networks School of Engineering © Steve Woodhead 2009 Corporate Governance and Information Security (InfoSec)
Chap 8: Administering Security.  Security is a combination Technical – covered in chap 1 Administrative Physical controls SE571 Security in Computing.
Chris Apgar, CISSP President, Apgar & Associates, LLC December 12, 2007.
Disaster Recovery: Can Your Business Survive Data Loss? DR Strategies for Today and Tomorrow.
Erman Taşkın. Information security aspects of business continuity management Objective: To counteract interruptions to business activities and to protect.
 How well is your organisation prepared for internal or external emergency situations? ◦ Do you consult with relevant emergency agencies? ◦ Do you.
INNOVATE THROUGH MOTIVATION Mobile Computing & Your Business KEVIN KIRKPATRICK – OWNER, MSP INC LOGO.
Chapter 3: Business Continuity Planning. Planning for Business Continuity Assess risks to business processes Minimize impact from disruptions Maintain.
Business Continuity Disaster Planning
CBIZ RISK & ADVISORY SERVICES BUSINESS CONTINUITY PLANNING Developing a Readiness Strategy that Mitigates Risk and is Actionable and Easy to Implement.
Disaster Recovery Planning (DRP) DRP: The definition of business processes, their infrastructure supports and tolerances to interruptions, and formulation.
Contingency Management in IT. Presentation Outline Components of contingency planning Insurance and backups Actual IT contingencies - Y2K problems - major.
Risk Controls in IA Zachary Rensko COSC 481. Outline Definition Risk Control Strategies Risk Control Categories The Human Firewall Project OCTAVE.
Changing IT Managing Networks in a New Reality Alex Bakman Founder and CEO Ecora Software.
Welcome to the ICT Department Unit 3_5 Security Policies.
Chapter 10 Disaster Recovery and Data Integrity 1.
Planning for Application Recovery
CompTIA Security+ Study Guide (SY0-401)
Providing Application High Availability
Server Upgrade HA/DR Integration
BUSINESS CONTINUITY BY HUI ZHENG.
Alabede, Collura, Walden, Zimmerman
Why ISO 27001? Subtitle or presenter
Why ISO 27001? MARIANNE ENGELBRECHT
Business Continuity Basics
Presentation transcript:

What to do “After” your IT guy gets hit by a truck! April 1, 2005

22 Step 1 - Send flowers Step 2 - Invoke the detailed plan that you already had in place to ensure continuance after just such an occurrence Step 3 - Business as usual

33 Or….., if you DIDN’T have a Disaster Recovery plan in place… Start the arduous task of putting a puzzle back together with many of the pieces missing …and accept the fact that you’re going to lose time, money, reputation and clients.

44 Agenda for today… FACTS about lack of Disaster Recovery Planning Understanding the impact to your business TYPES of Disaster STEPS to protect our business Questions

55 FACTS about lack of DR Planning: After the incident of the World Trade Center, 40% of the companies without disaster recovery capability were out of business within 6 weeks [Forbes Magazine] In fact, 40% of enterprises that experience any disaster go out of business within five years. [Gartner] Enterprises can improve those odds – but only if they take the necessary measures before and after the disaster.

66 FACTS about lack of DR Planning: File corruption and data loss are becoming much more common It costs the average company between $100,000 and $1,000,000 per year for desktop oriented disasters (both hard and soft costs) 7th Annual ICSA Lab's Virus Prevalence Survey, March 2002

What is Disaster Recovery? Disaster recovery is a series of actions to be taken in the event of major unplanned outages to minimize their adverse effects. –Power failure –Underground cable cuts or failures –Fire, flood, earthquake, and other natural disasters –Mistakes in system administration –Sabotage (intentional, virus, hacking, internal/external) –Loss of employee

88 When talking about Disaster Recovery… We typically think of: How to backup and restore data to computer systems How to restore network connections How to replace computers and where to put them Where employees can work if the building is damaged

99 A plan to restore all of these components must be in place. The system must be able to put them back together if your business is to survive a disaster. The efficiency with which this is done may make the difference in surviving or not! Disaster Recovery Planning

10 Do you know your COST for downtime? Potential pitfall - Disaster Recovery focusing only on the technical components. Consider the impact of the following: –Lost productivity and idle employees –Missed service level agreements –Diminished reputation for customer service –Increased technical support costs for onsite repair –Loss of customer confidence –Legal liabilities –Regulatory fines –Downward stock prices –… and more

11 Business Continuance Planning Instead of Computer Disaster Recovery, think in terms of Business Continuance Planning! BCP is more comprehensive. It addresses:  Risk of lost revenue and productivity  Plan of action for continuing the business, NOT computers

12 Business Continuance Planning Example of items that typical planning might leave out: Business processes and procedures Roles and responsibilities What happens at the absence of key individuals Sources and consumers of data Recovery time-frame requirements Order of recovery Documented procedures Reconstitution

Business Processes and Procedures are: Rarely documented Typically defined only in the combined knowledge of key employees (This is true of the “big picture” as well as for the details of each departmental process) One of the most difficult things to put back the if key employees are not available Business Processes and Procedures

14 Business Roles and Responsibilities Critical time is lost without pre-defined roles and responsibilities for: Making the decision to invoke the plan The second in charge Being responsible for each element of the plan Exception handling Decisions of priorities Signature authority

15 Business Key Individuals Absence of key individuals A more difficult thing to consider Mental notes Revenge (sabotage or withholding of information)

16 Business Data Flow Sources and Consumers of Information Detailed data flow Detailed process flow Updated documentation

17 Business Recovery Time Frames Recovery Time-frames and Order Set expectations up-front Help to design budgets Assign priorities for recovery

18 Business Documentation Documentation Create documentation so that a contractor can restart your business Create policies and procedures for updating

19 Business Reconstitution Reconstitution When is disaster over? How to go back to business as usual? What steps need to be taken?

20 Business Continuance Planning We’ve talked about things that are commonly left out... Now the things that typical planning “almost always” leaves out Mental notes Periodic testing Updating procedures and plan content Moving DR Planning to the DR Site Details, Details, Details!

21 Business Mental Notes Mental Notes “Steve knows how to do that” But what if Steve isn’t here? Most common obstruction Can involve relationships, passwords, technical understanding, history, contractual obligations… Documentation will never be perfect

22 Business Testing and Documentation Testing and Updating 32% of all data lost is due to human error  We’re all busy, so why take the time to work on something that we can put off and we probably won’t use anyway?  “I’ll have time to do it tomorrow”  “It’s someone else’s responsibility” We’ve seen too many people that have lost data that they “wish they would have taken the time” to safeguard!

23 Business Continuance Moving Planning to the DR Site The same disciplines must be put into practice at the DR site.

24 A method is needed that will: Bring knowledge together Document it Enable processes to be reconstructed (possibly without the help of key employees) Enforce periodic testing and updating of the plan Business Continuance Planning

Business Continuance Planning Summary Continuance Planning defines and documents Departmental processes Sources of data Consumers of data Relationships Cost ramifications Budget justifications Recovery criteria Solution design Documentation Assistance with testing and updating

26 Planning is approached in phases Process Analysis Data flows Risk Analysis Costs/Effects Disaster Recovery Planning Traditional technical component Implementation and Testing Annual or after significant changes Business Continuance Planning Summary

27 Continuance Planning can be implemented: Departmentally In phases As a single phase To practical extents Business Continuance Planning Summary

Rob Didlake Mary Linse Thank You! Questions?

Feedback: Privacy Policy Feedback
Do Not Sell My Personal Information
About project: SlidePlayer Terms of Service

© 2025 SlidePlayer.com. Inc. All rights reserved.