Blog

April 21st, 2015

BusinessContinuity_Apr20_CBusiness continuity plans (BCP) are designed to protect your company’s resources and data in the event of a disaster. Backing up data, getting insurance and marking rally points are some of the main components of a BCP. One of the most important processes is running an exercise to test whether the BCP actually works. But a business continuity exercise can be a challenge in its own way, as it involves all your employees and executives. Don’t be overwhelmed - we have a few proven steps to get you started.

Set objectives

The first step to any efficient exercise is having clear objectives. Think about the results you want to see at the end of the exercise. These outcomes may include, but are not limited to, IT disaster recovery, evacuation routines, off-site recovery plans, and supplier management. If there are measurable targets that can be put into the equation, then all the better. For instance, meeting a recovery objective after a disaster within x number of hours.

Select the right type of exercise

Essentially there are four levels of exercises, each increasing in complexity and difficulty.
  • A walkthrough - this exercise involves a team meeting to discuss whether the present BCP has everything covered and is up-to-date.
  • Desktop exercise - ideal for new or intermediate teams. A desktop exercise takes place in a room where delegates discuss a fictional scenario delivered via a series of powerpoint presentations. Role-playing and dramatic simulations are not part of this stage of the process.
  • Functional exercise - this level allows employees to perform their duties in a simulated environment. It is designed to exercise specific team members, procedures, and resources in the event of a disaster.
  • Live or real time - this is a full-scale exercise performed in real time with normal business suspended. The aim is to see whether people can do what’s expected of them within a set timescale. A live exercise is often complicated and costly to organize, but will generally ensure a much smoother process if the worst does happen.

Develop a scenario

Take what you’ve learned from the team, the objectives and plan to develop a scenario. Depending on the type of exercise, you should have a scenario tailored to suit your objectives. Be creative when simulating incidents. You may need only two or three to keep your employees busy for a couple of hours - during that time you can monitor their performance.

Prepare employees

Assign a group of representatives responsible for making announcements and preparing conference rooms to relay the plan to employees. Be specific about who in the company are participants, observers, and facilitators for the purposes of the exercise. Explain courses of actions to everyone involved in the plan. Remember, your BCP’s success depends on your employees’ cooperation, so do your best when you’re clarifying the plan.

Run the exercise!

If you can’t measure it, you can’t improve it. After careful planning and scheduling, it’s time to put your plan into action. Make sure you observe the exercise closely and ask yourself these questions: Are there any potential areas that can be improved? What should you do more of, or differently? What went well, and what didn’t? End the exercise with a feedback session where employees can express their opinions and share their ideas.

If you don’t get it right the first time, then go back to the drawing board and schedule another exercise. It only gets better with every practice.

Are you ready even if disaster should strike? Contact us today and we can help you develop a business continuity plan that keeps your company in the game.

Published with permission from TechAdvisory.org. Source.

April 7th, 2015

BusinessContinuity_Apr6_CThink your business is immune to disasters? Think again. Disasters can strike without warning and, when they do, your company stands to lose more than just the time and money you’ll have to spend on data recovery and compensation. You could lose years of hard-earned reputation and trust from loyal clients - the two things that could potentially put an end to your operations altogether. It’s therefore important to protect your business from disasters before they even happen. When it comes to disaster recovery planning, there are countless actions you can take to minimize damage and risk. Here are a few to get you started.

Cloud backup

One of the most serious side effects disasters inflict on your business is preventing access to data. This is a major inconvenience, especially if you need to communicate with clients on a daily basis. Make sure all your crucial data is safe by using a cloud-based backup solution. With the power of the cloud, your files are stored and accessible from anywhere, and at any time. Cloud backup provides convenience and enhanced uptime, ensuring business continuity during a disaster.

Get disaster insurance

Disaster insurance can help cover the costs of repairing damage caused by certain disasters. Many business owners think they have sufficient insurance coverage, only to find out later that their policy didn’t cover a disaster scenario. Take the time to consult with your insurance agent to understand what is, and what is not, covered by your insurance. If necessary, consider buying additional coverage from your insurance provider.

Prepare your employees

Many businesses regard employees as their most valuable assets. In the event of a disaster you will rely on them not only to execute the disaster recovery plan, but to also keep your business running. Unfortunately, if your employees or their families are also affected by a natural disaster, they won’t be able to concentrate on their work. That’s why you need to prepare your staff for coping with a disaster as well as your business. It could be something as simple as issuing a handbook to cope with crises, sending emails to alert employees, or preparing emergency supplies and communication devices to meet immediate needs.

Create a contingency plan

Review all your business operations and identify areas that are crucial for your organization’s survival. Establish a procedure for managing those functions during a disaster. For instance, you can make a list of all suppliers and their contact information. If your suppliers are located near your business, you should have secondary contacts in other locations. Establish an assembly place where your employees can continue to run the business if your main premises become inaccessible. Once you have a contingency plan in place, make sure you review it with your employees at least twice a year so you don’t forget any crucial details.

When your business is hit by a disaster, the top priority is to keep your daily operations running as normally as possible. If you want to learn more about planning for a disaster, give us a call today.

Published with permission from TechAdvisory.org. Source.

March 24th, 2015

BusinessContinuity_Mar23_C_2As a business owner you’ve probably heard of the benefits of a business continuity plan (BCP). It ensures your company’s protection in the event of an unexpected disaster, whether that’s natural or man-made. But you likely don’t have time to sit and learn all about business continuity procedures and terms. Hearing technical terms in meetings, and being expected to follow protocol, may also sound overwhelming. To help clear up the confusion, here are eight common business continuity terms that you should be aware of.

Battle box - a tool box where necessary equipment and vital information are stored. These objects and pieces of information should be useful in a disaster. Typical items include a first aid kit, laptop, protective equipment, and communication devices.

Business impact analysis (BIA) - a process to evaluate the impact that a disaster may have on a business. The BIA shows what a business stands to lose if some parts of its functions are missing. It allows you to see the general picture of your business processes and determine which ones are the most important.

Call tree - a comprehensive list of employee contacts and their telephone numbers. Call trees are used to notify out-of-office employees about a disaster. Companies can use a software program to contact people on the call tree by sending automated emails and text messages. In order for a call tree to work, employees should provide alternative contact options and their information must be up to date.

Data mirroring - a duplication of data from its source to another physical storage solution or the cloud. Data mirroring ensures that crucial information is safe, and companies can use the copied data as backup during a disaster.

Exercise - a series of activities designed to test a company’s business continuity plan. When an exercise is carried out, there will be an evaluation to decide whether a BCP is meeting standards or not. An exercise can identify gaps in, and the drawbacks of, a BCP and is therefore used as a tool to revise and improve a business continuity plan.

Hot site - an alternate location equipped with computers, communication tools and infrastructures to help a business recover information systems affected by the disaster.

Plan maintenance - a process of maintaining a company’s business continuity plan so that it is in working order and up to date. Plan maintenance includes scheduled reviews and updates.

Recovery time objective (RTO) - a period of time in which companies must recover their systems and functions after a disaster. This is the target time for a business to ideally resume its delivery of products and services at an acceptable level. RTO may be specified in business time (e.g. one business day) or elapsed time (e.g. elapsed 24 hours).

Business continuity plans can be a hassle to design and implement without proper understanding of their requirements. If you want to learn how you can protect your business from disasters, give us a call today.

Published with permission from TechAdvisory.org. Source.

February 14th, 2015

BC_164_CAre you prepared for when the unexpected strikes? According to the Institute for Business and Home Safety, approximately 25 percent of businesses don’t reopen following a major disaster. The truth is that disasters happen every day, regardless of location or business size - simply switch on the news for proof. So obviously, it’s wise to think ahead and plan for the worst. Here are some ideas to get you ready for a disaster before it hits.

The difference between disaster recovery and business continuity

While it’s easy to overlook the differences between a disaster recovery and business continuity plan, there are actually some key variations you should be aware of.

Disaster recovery is the restoration of business operations and IT infrastructure after a disaster has already occurred. Business continuity, on the other hand, is focused on maintaining business operations and profits throughout a disaster. While disaster recovery is mainly focused on the slice of time immediately following a disaster (how you replace your equipment and restore IT infrastructure asap), business continuity looks at the bigger picture - the continuity of the company as a whole. It ensures you can run your business and maintain profits during the process of recovering from a catastrophe. It generally includes a disaster recovery plan as part of it.

Creating your business continuity plan

The first step in creating your plan is to identify which of your IT assets are vulnerable to disaster. To do this, you need to ask yourself some important questions, starting with what might happen if you were to lose the functionality of a specific asset for a day, a week or even longer. Answering this question will help you identify your most critical IT assets; the ones that are integral to your business operations.

Here are some other important questions to ask when drafting your business continuity plan:

  • What is the purpose of my business continuity plan?
  • What disasters can affect my IT infrastructure?
  • What are my key business areas?
  • Which different business areas, assets and departments depend on each other?
  • What is the longest amount of time I can go without functionality of IT assets?
Once you can answer these, it’s time to start planning. Write down your thoughts, and then contact an IT provider like us for assistance. We’ve helped countless businesses just like yours prepare themselves in order to remain operational throughout catastrophes. We can also help you identify potential problems that you may not have thought of.

Need help creating your business continuity plan? Contact us today to see how we can help you stay running and turning profits when disaster hits.

Published with permission from TechAdvisory.org. Source.

August 7th, 2014

BCP_Aug05_CRegardless of the industry you operate in, or the size of your business, you should be taking steps to ensure that your business is ready for any disaster. While there are many paths you can take to ensure your business is ready, there is one element that is central to all plans: backing up your data. In the first part of this article, we took a look at four points that will help improve the effectiveness of your backups. Here are another four.

5. Automate your backup

It can be tough to actually remember to back up your files, especially if your business is busy. Therefore, you could look into an automated backup solution. At the very least, you should set a schedule as to when backups are conducted and set what is being backed up. While this isn't a full automation, a schedule will help.

If you are using solutions like the cloud or NAS (Network Attached Storage), you can usually automate the process by selecting which files and folders to back up and when. The software that powers these solutions will then do this automatically.

Ideally, your backups should be carried out automatically to ensure your data is available should you need it. But you should check periodically to ensure that your data is actually being backed up. This is especially true if you are backing up other systems, as there have been cases where employees have become frustrated by the backup process and simply turned it off. The business owner, thinking their data was being backed up would be in for a bit of a shock when systems crashed, if this was the case.

6. Back up your backups

Redundancy of your backups is just as important as actually backing up your data. You should keep a backup of your backup in case something happens to your original backup. While this doesn't have to be carried out as often as the 'normal' backup, this should be done on a regular basis.

In order to really ensure backup redundancy we recommend that if your main backup is kept on-site, then the secondary backup should be on another storage medium that is kept off-site.

7. Don't forget data stored on non-physical drives

What we are referring to here is the data stored on different services like your email, social media, and non-physical locations. This is especially true if you say have you own servers. It's highly likely that there is data stored on these services as well, and should they go down and you haven't kept a backup, you may lose important information.

Essentially, think about critical data that is used in the company, but isn't physically kept on computers. It may feel like this is going a step too far with backups, especially for businesses who use email services like Exchange and Gmail. However, while the chances of these systems going down are incredibly rare, it could still happen. Therefore, you should conduct a monthly to bi-yearly backup just to ensure that data is there somewhere should something happen.

8. Test your backups

Finally, it is beneficial to actually test your backups from time-to-time to ensure that they are not only working but the data is actually recoverable. If you do a trial run on recovering your data, you can get a good idea of how long it will take to retrieve this information when you actually need to recover it. You can then take steps to optimize this and let the relevant people know.

Also, testing is a good way to discover any problems, e.g., if someone has disabled backups, or one solution isn't working. This will ensure that your data is there when you need it.

If you are looking to integrate a data backup solution, contact us today to see how we can help.

Published with permission from TechAdvisory.org. Source.

July 24th, 2014

BCP_July21_CBacking up your data is an essential business task that should not be ignored. Believe it or not, it's not a matter of if your systems will crash putting your data at risk, but when. There's a good chance that you could face data loss if systems crash, and backing up your data will reduce this loss. In case you are struggling with backing up your data, we have come up with eight tips that can help.

1. Pick the backup solution that works best for your business

When it comes to backing up the data on your company's computers and systems, most companies consider five main options:
  • Internal hard drives - You can either use another hard drive installed in your computer or partition an existing hard drive so that it functions as a separate drive on which you back your data up. This is a quick option, however should your computer or the hard drive fail - two of the most common computer failures - then you will lose this data.
  • External hard drives - These drives are essentially separate hard drives that you connect to your computer via a USB or other connection. Many of these drives allow for one touch backup and can be configured to back up data at certain times. While these can be useful, especially if you want to keep data backups easily accessible, they are prone to the same potential failure as internal drives.
  • Removable drives or media - For example, USB flash drives, DVDs, etc. These are great for backing up work you are doing at the moment or for transferring small files from one machine to another. These options are limited by smaller storage sizes however, so backing up even one computer will likely require multiple disks or drives.
  • Cloud-based backup - This is the act of backing up your files to a backup provider over the Internet. Your files are stored off-site and can be restored as long as you have an Internet connection. For many businesses, this has become the main form of backup employed, largely due to cost and convenience - files can be backed up in the background. The biggest downside of this backup option however is that you do need an Internet connection for it to work and you will see more bandwidth being used, which could result in slower overall Internet speeds when files are being backed up.
  • NAS - Network Attached Storage, is a physical device that has slots for multiple hard drives. You connect this to your network and the storage space on the hard drives is pooled together and delivered to users. This solution is like a mix of cloud-based and external backup, only the device is usually in your office. While it is a good backup solution, it can get expensive, especially if you have a large number of systems to back up.
There are a wide variety of backup solutions available, so it is a good idea to sit down and figure out which are best for your business. The vast majority of companies integrate multiple solutions in order to maximize the effectiveness of their backups and spread the risk of losing data around a bit.

2. Split your backup locations

Despite all of the backup options available, you can narrow these down to two categories, the fact that the backups are kept in two locations:
  • On-site - Data backup solutions that are kept in your office. This could include internal hard drives, or NAS, and more. The idea here is that the data backup is kept in your office. Some like USB drives may leave the office, but the main idea is that they are used primarily in the office.
  • Off-site - Data backup solutions are stored off-site, or out of the office. The best example of this is cloud-based backup where your data is stored in a data center, most likely in another city. Another example is backing up to hard drives and storing them in a secure location outside of the office.
In order to ensure that your data backups are available should you need them you could split up the locations where they are kept. Should you keep all of your backups on hard drives in the office and there is damage to the premises, you could see your data disappear. One of the most effective strategies is to have one set of backups on-site, and another off-site which will ensure that should there be a disaster in one location, the other will likely be safe and you will still be able to access your data.

3. Establish a standard naming and filing system

Have you ever seen how people organize their hard drives? Some like to use folders and subfolders that are organized neatly, while others tend to throw files into one general folder. The same can be said for they way files are named - there's just so many differences.

Because of these differences, it can be difficult to back up and recover files properly. We recommend that you pick a naming and file system that every file and folder will follow across all systems. This means backups will be quicker, you will be able to see what is new, and you will spend less time organizing files.

Beyond this, an efficient naming and organization structure goes a long way toward making it easier to find files and recover them should your systems go down.

4. Determine which files need to be preserved

While it may be tempting to back every file and folder up, in an effort to maximize efficiency of your solution, it is better to not back everything up. We aren't saying don't back anything up, but you should take time to identify what files and folders are to be backed up. For example, screenshots that have been uploaded to the Web may not need to be kept.

The same can be said for non-work related files. While these may be important to your personal life, they likely aren't to the business so should not be backed up onto your business backups.

Look at each file and folder and see if it has something to do with business decisions, or is in anyway tied to your business. If it is then it is probably a good idea to keep it.

Stay tuned for the next four tips coming soon. If you would like to learn more about data backups in the mean time however, please contact us today.

Published with permission from TechAdvisory.org. Source.

July 18th, 2014

BCP_July14_CMetrics are used in nearly every business process, including disaster preparedness and any business continuity plan (BCP) you might have at the ready. Businesses who are looking to ensure that their company will make it through any disaster successfully need to have an effective BCP with metrics like RTO and RPO in place.

While both RTO and RPO are important elements of continuity plans, and they both sound fairly similar, they are actually quite different. In this article we define RTO and RPO and take a look at what the difference is between the two concepts.

RTO defined

RTO, or Recovery Time Objective, is the target time you set for the recovery of your IT and business activities after a disaster has struck. The goal here is to calculate how quickly you need to recover, which can then dictate the type or preparations you need to implement and the overall budget you should assign to business continuity.

If, for example, you find that your RTO is five hours, meaning your business can survive with systems down for this amount of time, then you will need to ensure a high level of preparation and a higher budget to ensure that systems can be recovered quickly. On the other hand, if the RTO is two weeks, then you can probably budget less and invest in less advanced solutions.

RPO defined

RPO, or Recovery Point Objective, is focused on data and your company's loss tolerance in relation to your data. RPO is determined by looking at the time between data backups and the amount of data that could be lost in between backups.

As part of business continuity planning, you need to figure out how long you can afford to operate without that data before the business suffers. A good example of setting an RPO is to imaging that you are writing an important, yet lengthy, report. Think to yourself that eventually your computer will crash and the content written after your last save will be lost. How much time can you tolerate having to try to recover, or rewrite that missing content?

That time becomes your RPO, and should become the indicator of how often you back your data up, or in this case save your work. If you find that your business can survive three to four days in between backups, then the RPO would be three days (the shortest time between backups).

What's the main difference between RTO and RPO?

The major difference between these two metrics is their purpose. The RTO is usually large scale, and looks at your whole business and systems involved. RPO focuses just on data and your company's overall resilience to the loss of it.

While they may be different, you should consider both metrics when looking to develop an effective BCP. If you are looking to improve or even set your RTO and RPO, contact us today to see how our business continuity systems and solutions can help.

Published with permission from TechAdvisory.org. Source.

May 15th, 2014

BCP_May13_CData is an integral part of any business, and it is a good idea to ensure that it is always available to your business too. This means you also need to back it up in case disaster jeopardizes or wipes out your original data. Looking into backup solutions, you will quickly come to see that there are a number of options you can employ. The challenge then is deciding on which one.

Three common backup options

When it comes to backing up your systems, there are three common platforms that are used:
  • Tape
  • Disk
  • Cloud
Some businesses use all three, while others stick to using just one. While each of these options do the same thing - essentially backing up your data - there are differences between each platform.

Tape-based backup

Tape-based backup is the oldest forms of data backup available to businesses, and has been in use since the mid 1960s. Many older, or well established businesses, likely have used this method for a long time, so they may find it easier to stick with it, largely because no infrastructure upgrades are needed.

While this method may seem a little anachronistic, there are still manufacturers creating backup tapes - most notable Sony, who recently introduced a new tape system that can store up to 185TB (terabytes) of data on one tape. That's about equal to the storage capacity of around 11,800 16GB iPhone 5s.

The vast majority of businesses using this system do so as a secondary backup. They use another system to back up their data, and then back up this backup data onto physical tape which can then be moved off-site and stored in a safe location, should disaster strike.

The biggest drawback of tape stem from the fact that it is an older method and it takes longer to back up data compared to other systems. The tapes themselves are also more fragile and can be prone to failure, leading to corrupt data and unreadability. Finally, if you do need to recover from a tape backup, you are going to have to do so in a specific manner, which means it will take longer to recover your systems than other methods.

Disk-based backup

Disk-based backup solutions use a variety of disk storage units to hold backups of your data. The most popular forms of disk storage used are hard drives or optical disks. Because these systems use more modern storage methods, backup and recovery can generally be carried out far quicker than with tape systems, and can be more reliable, especially if you take care of your systems and the disks the backups are stored on.

The added benefit with these systems is that hard disks are constantly dropping in price and increasing in capacity, meaning you can fit more data on fewer devices. This helps keep costs manageable, and may result in reduced costs over time.

Because disk-based systems rely on hard drives or optical disks, there is always the chance that your backups can be lost, ruined or even stolen. Also, many companies choose to keep these physical backups on-site, so if there is a disaster this could result in the loss of these backups.

To get around this, many companies have duplicate systems. They back up to different devices which are kept off-site. This redundancy can help ensure that your data is available, but it can be expensive to purchase multiple backup solutions.

Cloud-based backup

Cloud, or online-based backup, utilizes off-site technology to host your backups. Most small business solutions work with providers who host the servers in their organization. The business then connects to the servers via a network connection in order to backup their data.

The biggest advantage of cloud systems is that they are generally more affordable. This is because you don't need to have the systems in your office, which means you don't need to pay for the data systems and the upkeep associated with them. Cloud systems are also less labor intensive because they can be managed by your IT partner.

Aside from being easier to manage, backup and recovery is usually quicker with the cloud because you can set up a solution that continually backs up. As long as you have an Internet connection, you will usually be able to restore your systems in a matter of hours.

While the cloud is becoming the most popular backup solution, there are some drawbacks. You need a faster bandwidth connection if you want to be able to back up while also working. This may require you to invest in better network infrastructure, which costs. The other issue some companies have is that because this is a new solution, they may not trust that the solution is secure. The vast majority of backup solutions available have been designed to be secure and have become a viable solution for many smaller businesses.

If you are looking to implement a backup solution in your business, contact us today to learn about what solutions we have to offer.

Published with permission from TechAdvisory.org. Source.

April 23rd, 2014

BCP_Apr21_CIt’s vital for companies to have a backup plan for disaster, as no one can really predict when they will strike. The most common plan businesses integrate is a business continuity plan or BCP which will ensure that your business can continuously operate and deliver products or services even when catastrophe occurs. If you don’t have an existing BCP for your company, it’s time that you considered creating one. This is true for every business, whether a startup or established, big company that has been operating for years.

Why make a business continuity plan?

Having a BCP for your company has several benefits. One of the most obvious is that your business can continue its everyday operations, thus allowing you to keep making sales. Aside from this, there are other advantages:
  • Possible to work in remote locations - In the event that your office can’t be used because of disaster, you’ll know how to keep key business functions running by thinking ahead about how employees or key personnel can continue working from remote locations. You may also have a certain place ready to be used as your temporary office if needed.
  • Downtime can be lessened - When disaster strikes it can stop your business operations immediately. Without a business continuity plan, you have to figure out what to do next the moment it happens. However, if you have an existing plan in place, you can immediately start to execute what needs to be done so that you get your business up and running in no time. Time means money in every business and that’s why it’s important not to waste any time unnecessarily.
  • Continue to provide for your customers - If your business operations stop, your customers may start trying out other products or services from other companies. They may forget about you if they don’t feel your presence. Since a successful BCP will keep you up and running, you’ll be able to keep hold of your loyal customers and even continue to make new ones, especially if your competitors do not have a business continuity plan and are afflicted with adverse circumstances too.

Factors to consider when creating a BCP

Since every business is unique, there’s no single BCP that works for all. However, there are common factors that must be considered by every company when devising one.
  • People to manage a BCP - As with any project or program, there should be a committee to take over the management of the business continuity process. This is unlikely to be achieved by a single person. It is best being a collaborative effort, where people have specific roles such as appointing an executive sponsor that takes care of funds and coordinators who oversee the overall process.
  • Analysis of business impact - You need to determine which products and services are the most important to your business operations. Ranking your products according to how critical their impact to your business is will help you determine which products to prioritize during the recovery phase. With this in mind, you can prevent bigger losses and maximize the efficiency of your recovery process.

Plan creation

After determining which products, services, and functions are most vital to your business, you can start creating a plan on what to do in the event of a disaster. It should clearly tell the process that must be followed, as well as the specific roles of individuals. There are existing sample plans that you can find on the Web and you can follow the format of a business in the same industry and customize the plan to suit your individual company.

Plan review

Your BCP plan must be studied carefully for quality. Every area should be reviewed properly to ensure the plan is a success. Since the needs and processes of the company may change, it’s also important to review the plan once or twice a year to ensure that it’s still appropriate for your business.

If you are truly serious about establishing business security, a BCP isn’t a process that you can easily neglect. Remember, you never know when a disaster can strike! The sooner you get a plan of action, the better. Contact us today to see how we can help you develop a plan that will work for your business.

Published with permission from TechAdvisory.org. Source.

March 20th, 2014

BCP_Marc17_CIsn’t it disturbing how a disaster (whether man made or natural) can devastate your business? While disasters are inevitable, you can mitigate risks and lessen the damage to your business in the event of one through a DRP (Disaster Recovery Plan). While it may not seem important to some businesses, especially if yours has never been faced with a disaster, a DRP would be a good idea.

While there are several facets to a DRP that are going to determine whether it will be effective or not, making sure that you’ve considered these 5 tips is definitely a good start.

1.) Commitment from management

Because the managers are the ones who will coordinate the development of the plan and be the central figures who implement the recovery plan, it’s crucial that they are committed to it and are willing to back it up.

They will also be responsible for setting an allocated budget and manpower to creating the actual plan. That said, it’s very important that they know the concept behind it and how huge of an impact a DRP can have on a business.

2.) A representative on each department should be available when creating a DRP

It’s unthinkable to believe that your DRP is well optimized when you haven’t had a representative from each department coordinate with you while creating the recovery program.

Considering how they themselves are the front line of your organization with the best knowledge about how their department works, it’s a huge plus that you should take advantage of when creating a DRP.

With the representatives on your team, you’ll be able to see things from their perspective and gain first-hand knowledge from those who do the actual work.

3.) Remember to prioritize

In an ideal world, you should be able to restore everything at the same time after a disaster strikes. But since most businesses usually have a limited amount of resources, you will usually have to recover systems one at a time.

Because of this, you need to have a hierarchy or a sense of priority when determining which systems should be recovered first. That way, the most important systems are immediately brought back up while the less important ones are then queued in order of their importance.

4.) Determining your recovery strategies

This is one of the main focal points of a DRP since this phase tackles the actual strategies or steps that you’ll implement to recover your systems.

When determining your actual strategies, it's important that you brainstorm and think about all the options that you have to recovering your systems. Don’t simply stick with the cheapest possible strategy or even the most expensive ones.

You have to remember though that the simplest strategy to implement is probably the best one. That is, as long as the simplest strategy covers the critical aspects of your system recovery.

That said, avoid over complicating your strategies as you might face unnecessary challenges when it comes to the implementation of the recovery strategy.

5.) Do a dry run at least once a year

Your DRP shouldn’t end with the concept alone. No matter how foolproof you think your strategy is, if you haven’t tested it you most likely have missed something important.

It's during the dry run phase that the need for extra steps (or the removal of one) are made even more evident. You can then start polishing your strategies according to how your dry run plays out. It would also be a good year to practice your plan each year and update it accordingly.

These tips will help you ensure that your DRP will remain effective should a disaster occur. If you’re having a hard time figuring out how to go about the process of creating a DRP, then give us a call now and we’ll help you with the process.

Published with permission from TechAdvisory.org. Source.