Disaster Recovery Planning

In this course, students will learn how to:

• Create a business continuity plan and the methodology for implementation
• Perform a risk assessment and Business Impact Assessment (BIA) to identify vulnerabilities
• Select and deploy an alternate site for continuity of mission-critical activities
• Identify appropriate strategies to recover the infrastructure and processes
• Organize and manage recovery teams

Introduction

• Business continuity vs. disaster recovery
• Clarifying the terminology
• Why a recovery plan is a crucial asset
• Sources of threat
• Codes of practice and legislative requirements

Measuring Risk and Avoiding Disaster
Assessing risk in the enterprise

• Choosing the assessment method
• The five-step risk process
• Matching the response to the threat

Identifying mission-critical continuity needs

• Evaluating which functions are critical
• Setting priorities based on time horizons
• Prioritizing processes and applications

Implementing disaster avoidance

• Avoiding disasters by taking preventative actions
• Creating contingency plans for unavoidable threats

The four-step Business Impact Assessment (BIA)

• Identifying the threat
• Assessing the risk to the enterprise
• Identifying business-critical activities
• Specifying required IT support from technical staff

Designing Recovery Solutions
Establishing a disaster recovery site

• Site choices: configuration and acquisition
• Choosing suppliers: in-house vs. third-party
• Specifying equipment

Selecting backup and restore strategies

• Matching strategy to operational constraints
• Meeting the organization’s storage requirements forvital records

Restoring communications and recovering users

• Determining vital users with the BIA
• Rerouting voice, mail, goods delivery
• Eliminating network single points of failure
• Connecting end users
• Meeting varied user-recovery needs

Implementing a Project Management Approach
Managing and documenting the planning project

• Identifying stakeholders
• Analyzing stakeholder needs
• Obtaining the funding commitments
• Defining clear goals at the start
• Agreeing critical success factors

Running the project

• Controlling the project via tracking
• Managing risks and issues
• Testing deliverables

Responding to Disaster
Creating the recovery plan

• Capturing the planning output
• Creating recovery-team charters
• Defining roles and responsibilities
• Responding to recovery scenarios
• Information directories and equipment inventories

Directing the disaster recovery teams

• Setting up the command center
• Planning and conducting Crisis Communications
• Connecting with emergency services
• Team actions following a disaster

Assuring the Plan and Applying Document Management
Rehearsing the business continuity plan

• The reasons for testing the plan
• Considering the impact on the organization’s activities
• Using a step-by-step process to test the plan
• Developing test scenarios and using test results effectively
• Building a recovery plan based on best practices

Maintaining the business continuity plan

• Applying change control: why and how
• Ensuring normal developments are accounted for
• Scheduling regular reviews
• Applying document management discipline to the plan
• Considering automated tools to support the business continuity plan