Blog

March 24th, 2015

BusinessContinuity_Mar23_C_2As a business owner you’ve probably heard of the benefits of a business continuity plan (BCP). It ensures your company’s protection in the event of an unexpected disaster, whether that’s natural or man-made. But you likely don’t have time to sit and learn all about business continuity procedures and terms. Hearing technical terms in meetings, and being expected to follow protocol, may also sound overwhelming. To help clear up the confusion, here are eight common business continuity terms that you should be aware of.

Battle box - a tool box where necessary equipment and vital information are stored. These objects and pieces of information should be useful in a disaster. Typical items include a first aid kit, laptop, protective equipment, and communication devices.

Business impact analysis (BIA) - a process to evaluate the impact that a disaster may have on a business. The BIA shows what a business stands to lose if some parts of its functions are missing. It allows you to see the general picture of your business processes and determine which ones are the most important.

Call tree - a comprehensive list of employee contacts and their telephone numbers. Call trees are used to notify out-of-office employees about a disaster. Companies can use a software program to contact people on the call tree by sending automated emails and text messages. In order for a call tree to work, employees should provide alternative contact options and their information must be up to date.

Data mirroring - a duplication of data from its source to another physical storage solution or the cloud. Data mirroring ensures that crucial information is safe, and companies can use the copied data as backup during a disaster.

Exercise - a series of activities designed to test a company’s business continuity plan. When an exercise is carried out, there will be an evaluation to decide whether a BCP is meeting standards or not. An exercise can identify gaps in, and the drawbacks of, a BCP and is therefore used as a tool to revise and improve a business continuity plan.

Hot site - an alternate location equipped with computers, communication tools and infrastructures to help a business recover information systems affected by the disaster.

Plan maintenance - a process of maintaining a company’s business continuity plan so that it is in working order and up to date. Plan maintenance includes scheduled reviews and updates.

Recovery time objective (RTO) - a period of time in which companies must recover their systems and functions after a disaster. This is the target time for a business to ideally resume its delivery of products and services at an acceptable level. RTO may be specified in business time (e.g. one business day) or elapsed time (e.g. elapsed 24 hours).

Business continuity plans can be a hassle to design and implement without proper understanding of their requirements. If you want to learn how you can protect your business from disasters, give us a call today.

Published with permission from TechAdvisory.org. Source.

February 14th, 2015

BC_164_CAre you prepared for when the unexpected strikes? According to the Institute for Business and Home Safety, approximately 25 percent of businesses don’t reopen following a major disaster. The truth is that disasters happen every day, regardless of location or business size - simply switch on the news for proof. So obviously, it’s wise to think ahead and plan for the worst. Here are some ideas to get you ready for a disaster before it hits.

The difference between disaster recovery and business continuity

While it’s easy to overlook the differences between a disaster recovery and business continuity plan, there are actually some key variations you should be aware of.

Disaster recovery is the restoration of business operations and IT infrastructure after a disaster has already occurred. Business continuity, on the other hand, is focused on maintaining business operations and profits throughout a disaster. While disaster recovery is mainly focused on the slice of time immediately following a disaster (how you replace your equipment and restore IT infrastructure asap), business continuity looks at the bigger picture - the continuity of the company as a whole. It ensures you can run your business and maintain profits during the process of recovering from a catastrophe. It generally includes a disaster recovery plan as part of it.

Creating your business continuity plan

The first step in creating your plan is to identify which of your IT assets are vulnerable to disaster. To do this, you need to ask yourself some important questions, starting with what might happen if you were to lose the functionality of a specific asset for a day, a week or even longer. Answering this question will help you identify your most critical IT assets; the ones that are integral to your business operations.

Here are some other important questions to ask when drafting your business continuity plan:

  • What is the purpose of my business continuity plan?
  • What disasters can affect my IT infrastructure?
  • What are my key business areas?
  • Which different business areas, assets and departments depend on each other?
  • What is the longest amount of time I can go without functionality of IT assets?
Once you can answer these, it’s time to start planning. Write down your thoughts, and then contact an IT provider like us for assistance. We’ve helped countless businesses just like yours prepare themselves in order to remain operational throughout catastrophes. We can also help you identify potential problems that you may not have thought of.

Need help creating your business continuity plan? Contact us today to see how we can help you stay running and turning profits when disaster hits.

Published with permission from TechAdvisory.org. Source.

August 7th, 2014

BCP_Aug05_CRegardless of the industry you operate in, or the size of your business, you should be taking steps to ensure that your business is ready for any disaster. While there are many paths you can take to ensure your business is ready, there is one element that is central to all plans: backing up your data. In the first part of this article, we took a look at four points that will help improve the effectiveness of your backups. Here are another four.

5. Automate your backup

It can be tough to actually remember to back up your files, especially if your business is busy. Therefore, you could look into an automated backup solution. At the very least, you should set a schedule as to when backups are conducted and set what is being backed up. While this isn't a full automation, a schedule will help.

If you are using solutions like the cloud or NAS (Network Attached Storage), you can usually automate the process by selecting which files and folders to back up and when. The software that powers these solutions will then do this automatically.

Ideally, your backups should be carried out automatically to ensure your data is available should you need it. But you should check periodically to ensure that your data is actually being backed up. This is especially true if you are backing up other systems, as there have been cases where employees have become frustrated by the backup process and simply turned it off. The business owner, thinking their data was being backed up would be in for a bit of a shock when systems crashed, if this was the case.

6. Back up your backups

Redundancy of your backups is just as important as actually backing up your data. You should keep a backup of your backup in case something happens to your original backup. While this doesn't have to be carried out as often as the 'normal' backup, this should be done on a regular basis.

In order to really ensure backup redundancy we recommend that if your main backup is kept on-site, then the secondary backup should be on another storage medium that is kept off-site.

7. Don't forget data stored on non-physical drives

What we are referring to here is the data stored on different services like your email, social media, and non-physical locations. This is especially true if you say have you own servers. It's highly likely that there is data stored on these services as well, and should they go down and you haven't kept a backup, you may lose important information.

Essentially, think about critical data that is used in the company, but isn't physically kept on computers. It may feel like this is going a step too far with backups, especially for businesses who use email services like Exchange and Gmail. However, while the chances of these systems going down are incredibly rare, it could still happen. Therefore, you should conduct a monthly to bi-yearly backup just to ensure that data is there somewhere should something happen.

8. Test your backups

Finally, it is beneficial to actually test your backups from time-to-time to ensure that they are not only working but the data is actually recoverable. If you do a trial run on recovering your data, you can get a good idea of how long it will take to retrieve this information when you actually need to recover it. You can then take steps to optimize this and let the relevant people know.

Also, testing is a good way to discover any problems, e.g., if someone has disabled backups, or one solution isn't working. This will ensure that your data is there when you need it.

If you are looking to integrate a data backup solution, contact us today to see how we can help.

Published with permission from TechAdvisory.org. Source.

July 24th, 2014

BCP_July21_CBacking up your data is an essential business task that should not be ignored. Believe it or not, it's not a matter of if your systems will crash putting your data at risk, but when. There's a good chance that you could face data loss if systems crash, and backing up your data will reduce this loss. In case you are struggling with backing up your data, we have come up with eight tips that can help.

1. Pick the backup solution that works best for your business

When it comes to backing up the data on your company's computers and systems, most companies consider five main options:
  • Internal hard drives - You can either use another hard drive installed in your computer or partition an existing hard drive so that it functions as a separate drive on which you back your data up. This is a quick option, however should your computer or the hard drive fail - two of the most common computer failures - then you will lose this data.
  • External hard drives - These drives are essentially separate hard drives that you connect to your computer via a USB or other connection. Many of these drives allow for one touch backup and can be configured to back up data at certain times. While these can be useful, especially if you want to keep data backups easily accessible, they are prone to the same potential failure as internal drives.
  • Removable drives or media - For example, USB flash drives, DVDs, etc. These are great for backing up work you are doing at the moment or for transferring small files from one machine to another. These options are limited by smaller storage sizes however, so backing up even one computer will likely require multiple disks or drives.
  • Cloud-based backup - This is the act of backing up your files to a backup provider over the Internet. Your files are stored off-site and can be restored as long as you have an Internet connection. For many businesses, this has become the main form of backup employed, largely due to cost and convenience - files can be backed up in the background. The biggest downside of this backup option however is that you do need an Internet connection for it to work and you will see more bandwidth being used, which could result in slower overall Internet speeds when files are being backed up.
  • NAS - Network Attached Storage, is a physical device that has slots for multiple hard drives. You connect this to your network and the storage space on the hard drives is pooled together and delivered to users. This solution is like a mix of cloud-based and external backup, only the device is usually in your office. While it is a good backup solution, it can get expensive, especially if you have a large number of systems to back up.
There are a wide variety of backup solutions available, so it is a good idea to sit down and figure out which are best for your business. The vast majority of companies integrate multiple solutions in order to maximize the effectiveness of their backups and spread the risk of losing data around a bit.

2. Split your backup locations

Despite all of the backup options available, you can narrow these down to two categories, the fact that the backups are kept in two locations:
  • On-site - Data backup solutions that are kept in your office. This could include internal hard drives, or NAS, and more. The idea here is that the data backup is kept in your office. Some like USB drives may leave the office, but the main idea is that they are used primarily in the office.
  • Off-site - Data backup solutions are stored off-site, or out of the office. The best example of this is cloud-based backup where your data is stored in a data center, most likely in another city. Another example is backing up to hard drives and storing them in a secure location outside of the office.
In order to ensure that your data backups are available should you need them you could split up the locations where they are kept. Should you keep all of your backups on hard drives in the office and there is damage to the premises, you could see your data disappear. One of the most effective strategies is to have one set of backups on-site, and another off-site which will ensure that should there be a disaster in one location, the other will likely be safe and you will still be able to access your data.

3. Establish a standard naming and filing system

Have you ever seen how people organize their hard drives? Some like to use folders and subfolders that are organized neatly, while others tend to throw files into one general folder. The same can be said for they way files are named - there's just so many differences.

Because of these differences, it can be difficult to back up and recover files properly. We recommend that you pick a naming and file system that every file and folder will follow across all systems. This means backups will be quicker, you will be able to see what is new, and you will spend less time organizing files.

Beyond this, an efficient naming and organization structure goes a long way toward making it easier to find files and recover them should your systems go down.

4. Determine which files need to be preserved

While it may be tempting to back every file and folder up, in an effort to maximize efficiency of your solution, it is better to not back everything up. We aren't saying don't back anything up, but you should take time to identify what files and folders are to be backed up. For example, screenshots that have been uploaded to the Web may not need to be kept.

The same can be said for non-work related files. While these may be important to your personal life, they likely aren't to the business so should not be backed up onto your business backups.

Look at each file and folder and see if it has something to do with business decisions, or is in anyway tied to your business. If it is then it is probably a good idea to keep it.

Stay tuned for the next four tips coming soon. If you would like to learn more about data backups in the mean time however, please contact us today.

Published with permission from TechAdvisory.org. Source.

July 18th, 2014

BCP_July14_CMetrics are used in nearly every business process, including disaster preparedness and any business continuity plan (BCP) you might have at the ready. Businesses who are looking to ensure that their company will make it through any disaster successfully need to have an effective BCP with metrics like RTO and RPO in place.

While both RTO and RPO are important elements of continuity plans, and they both sound fairly similar, they are actually quite different. In this article we define RTO and RPO and take a look at what the difference is between the two concepts.

RTO defined

RTO, or Recovery Time Objective, is the target time you set for the recovery of your IT and business activities after a disaster has struck. The goal here is to calculate how quickly you need to recover, which can then dictate the type or preparations you need to implement and the overall budget you should assign to business continuity.

If, for example, you find that your RTO is five hours, meaning your business can survive with systems down for this amount of time, then you will need to ensure a high level of preparation and a higher budget to ensure that systems can be recovered quickly. On the other hand, if the RTO is two weeks, then you can probably budget less and invest in less advanced solutions.

RPO defined

RPO, or Recovery Point Objective, is focused on data and your company's loss tolerance in relation to your data. RPO is determined by looking at the time between data backups and the amount of data that could be lost in between backups.

As part of business continuity planning, you need to figure out how long you can afford to operate without that data before the business suffers. A good example of setting an RPO is to imaging that you are writing an important, yet lengthy, report. Think to yourself that eventually your computer will crash and the content written after your last save will be lost. How much time can you tolerate having to try to recover, or rewrite that missing content?

That time becomes your RPO, and should become the indicator of how often you back your data up, or in this case save your work. If you find that your business can survive three to four days in between backups, then the RPO would be three days (the shortest time between backups).

What's the main difference between RTO and RPO?

The major difference between these two metrics is their purpose. The RTO is usually large scale, and looks at your whole business and systems involved. RPO focuses just on data and your company's overall resilience to the loss of it.

While they may be different, you should consider both metrics when looking to develop an effective BCP. If you are looking to improve or even set your RTO and RPO, contact us today to see how our business continuity systems and solutions can help.

Published with permission from TechAdvisory.org. Source.

May 15th, 2014

BCP_May13_CData is an integral part of any business, and it is a good idea to ensure that it is always available to your business too. This means you also need to back it up in case disaster jeopardizes or wipes out your original data. Looking into backup solutions, you will quickly come to see that there are a number of options you can employ. The challenge then is deciding on which one.

Three common backup options

When it comes to backing up your systems, there are three common platforms that are used:
  • Tape
  • Disk
  • Cloud
Some businesses use all three, while others stick to using just one. While each of these options do the same thing - essentially backing up your data - there are differences between each platform.

Tape-based backup

Tape-based backup is the oldest forms of data backup available to businesses, and has been in use since the mid 1960s. Many older, or well established businesses, likely have used this method for a long time, so they may find it easier to stick with it, largely because no infrastructure upgrades are needed.

While this method may seem a little anachronistic, there are still manufacturers creating backup tapes - most notable Sony, who recently introduced a new tape system that can store up to 185TB (terabytes) of data on one tape. That's about equal to the storage capacity of around 11,800 16GB iPhone 5s.

The vast majority of businesses using this system do so as a secondary backup. They use another system to back up their data, and then back up this backup data onto physical tape which can then be moved off-site and stored in a safe location, should disaster strike.

The biggest drawback of tape stem from the fact that it is an older method and it takes longer to back up data compared to other systems. The tapes themselves are also more fragile and can be prone to failure, leading to corrupt data and unreadability. Finally, if you do need to recover from a tape backup, you are going to have to do so in a specific manner, which means it will take longer to recover your systems than other methods.

Disk-based backup

Disk-based backup solutions use a variety of disk storage units to hold backups of your data. The most popular forms of disk storage used are hard drives or optical disks. Because these systems use more modern storage methods, backup and recovery can generally be carried out far quicker than with tape systems, and can be more reliable, especially if you take care of your systems and the disks the backups are stored on.

The added benefit with these systems is that hard disks are constantly dropping in price and increasing in capacity, meaning you can fit more data on fewer devices. This helps keep costs manageable, and may result in reduced costs over time.

Because disk-based systems rely on hard drives or optical disks, there is always the chance that your backups can be lost, ruined or even stolen. Also, many companies choose to keep these physical backups on-site, so if there is a disaster this could result in the loss of these backups.

To get around this, many companies have duplicate systems. They back up to different devices which are kept off-site. This redundancy can help ensure that your data is available, but it can be expensive to purchase multiple backup solutions.

Cloud-based backup

Cloud, or online-based backup, utilizes off-site technology to host your backups. Most small business solutions work with providers who host the servers in their organization. The business then connects to the servers via a network connection in order to backup their data.

The biggest advantage of cloud systems is that they are generally more affordable. This is because you don't need to have the systems in your office, which means you don't need to pay for the data systems and the upkeep associated with them. Cloud systems are also less labor intensive because they can be managed by your IT partner.

Aside from being easier to manage, backup and recovery is usually quicker with the cloud because you can set up a solution that continually backs up. As long as you have an Internet connection, you will usually be able to restore your systems in a matter of hours.

While the cloud is becoming the most popular backup solution, there are some drawbacks. You need a faster bandwidth connection if you want to be able to back up while also working. This may require you to invest in better network infrastructure, which costs. The other issue some companies have is that because this is a new solution, they may not trust that the solution is secure. The vast majority of backup solutions available have been designed to be secure and have become a viable solution for many smaller businesses.

If you are looking to implement a backup solution in your business, contact us today to learn about what solutions we have to offer.

Published with permission from TechAdvisory.org. Source.

April 23rd, 2014

BCP_Apr21_CIt’s vital for companies to have a backup plan for disaster, as no one can really predict when they will strike. The most common plan businesses integrate is a business continuity plan or BCP which will ensure that your business can continuously operate and deliver products or services even when catastrophe occurs. If you don’t have an existing BCP for your company, it’s time that you considered creating one. This is true for every business, whether a startup or established, big company that has been operating for years.

Why make a business continuity plan?

Having a BCP for your company has several benefits. One of the most obvious is that your business can continue its everyday operations, thus allowing you to keep making sales. Aside from this, there are other advantages:
  • Possible to work in remote locations - In the event that your office can’t be used because of disaster, you’ll know how to keep key business functions running by thinking ahead about how employees or key personnel can continue working from remote locations. You may also have a certain place ready to be used as your temporary office if needed.
  • Downtime can be lessened - When disaster strikes it can stop your business operations immediately. Without a business continuity plan, you have to figure out what to do next the moment it happens. However, if you have an existing plan in place, you can immediately start to execute what needs to be done so that you get your business up and running in no time. Time means money in every business and that’s why it’s important not to waste any time unnecessarily.
  • Continue to provide for your customers - If your business operations stop, your customers may start trying out other products or services from other companies. They may forget about you if they don’t feel your presence. Since a successful BCP will keep you up and running, you’ll be able to keep hold of your loyal customers and even continue to make new ones, especially if your competitors do not have a business continuity plan and are afflicted with adverse circumstances too.

Factors to consider when creating a BCP

Since every business is unique, there’s no single BCP that works for all. However, there are common factors that must be considered by every company when devising one.
  • People to manage a BCP - As with any project or program, there should be a committee to take over the management of the business continuity process. This is unlikely to be achieved by a single person. It is best being a collaborative effort, where people have specific roles such as appointing an executive sponsor that takes care of funds and coordinators who oversee the overall process.
  • Analysis of business impact - You need to determine which products and services are the most important to your business operations. Ranking your products according to how critical their impact to your business is will help you determine which products to prioritize during the recovery phase. With this in mind, you can prevent bigger losses and maximize the efficiency of your recovery process.

Plan creation

After determining which products, services, and functions are most vital to your business, you can start creating a plan on what to do in the event of a disaster. It should clearly tell the process that must be followed, as well as the specific roles of individuals. There are existing sample plans that you can find on the Web and you can follow the format of a business in the same industry and customize the plan to suit your individual company.

Plan review

Your BCP plan must be studied carefully for quality. Every area should be reviewed properly to ensure the plan is a success. Since the needs and processes of the company may change, it’s also important to review the plan once or twice a year to ensure that it’s still appropriate for your business.

If you are truly serious about establishing business security, a BCP isn’t a process that you can easily neglect. Remember, you never know when a disaster can strike! The sooner you get a plan of action, the better. Contact us today to see how we can help you develop a plan that will work for your business.

Published with permission from TechAdvisory.org. Source.

March 20th, 2014

BCP_Marc17_CIsn’t it disturbing how a disaster (whether man made or natural) can devastate your business? While disasters are inevitable, you can mitigate risks and lessen the damage to your business in the event of one through a DRP (Disaster Recovery Plan). While it may not seem important to some businesses, especially if yours has never been faced with a disaster, a DRP would be a good idea.

While there are several facets to a DRP that are going to determine whether it will be effective or not, making sure that you’ve considered these 5 tips is definitely a good start.

1.) Commitment from management

Because the managers are the ones who will coordinate the development of the plan and be the central figures who implement the recovery plan, it’s crucial that they are committed to it and are willing to back it up.

They will also be responsible for setting an allocated budget and manpower to creating the actual plan. That said, it’s very important that they know the concept behind it and how huge of an impact a DRP can have on a business.

2.) A representative on each department should be available when creating a DRP

It’s unthinkable to believe that your DRP is well optimized when you haven’t had a representative from each department coordinate with you while creating the recovery program.

Considering how they themselves are the front line of your organization with the best knowledge about how their department works, it’s a huge plus that you should take advantage of when creating a DRP.

With the representatives on your team, you’ll be able to see things from their perspective and gain first-hand knowledge from those who do the actual work.

3.) Remember to prioritize

In an ideal world, you should be able to restore everything at the same time after a disaster strikes. But since most businesses usually have a limited amount of resources, you will usually have to recover systems one at a time.

Because of this, you need to have a hierarchy or a sense of priority when determining which systems should be recovered first. That way, the most important systems are immediately brought back up while the less important ones are then queued in order of their importance.

4.) Determining your recovery strategies

This is one of the main focal points of a DRP since this phase tackles the actual strategies or steps that you’ll implement to recover your systems.

When determining your actual strategies, it's important that you brainstorm and think about all the options that you have to recovering your systems. Don’t simply stick with the cheapest possible strategy or even the most expensive ones.

You have to remember though that the simplest strategy to implement is probably the best one. That is, as long as the simplest strategy covers the critical aspects of your system recovery.

That said, avoid over complicating your strategies as you might face unnecessary challenges when it comes to the implementation of the recovery strategy.

5.) Do a dry run at least once a year

Your DRP shouldn’t end with the concept alone. No matter how foolproof you think your strategy is, if you haven’t tested it you most likely have missed something important.

It's during the dry run phase that the need for extra steps (or the removal of one) are made even more evident. You can then start polishing your strategies according to how your dry run plays out. It would also be a good year to practice your plan each year and update it accordingly.

These tips will help you ensure that your DRP will remain effective should a disaster occur. If you’re having a hard time figuring out how to go about the process of creating a DRP, then give us a call now and we’ll help you with the process.

Published with permission from TechAdvisory.org. Source.

February 20th, 2014

BCP_Feb17_CDisaster recovery features have become a vital aspect for small to medium businesses. With systems and networks becoming more complex, there are many things that can go wrong. It’s for this reason that a business needs to have a DRP, or Disaster Recovery Plan. These plans are a good way of protecting your business from unforeseen calamities that could disrupt your business process.

When creating a disaster recovery plan for your business, there are certain key elements that you need to consider.

Basics of a Disaster Recovery Plan

In building an effective disaster recovery plan, you should include thorough documentation that lays out the details of the ins and outs of the plan. You need to know that there is no right type of DRP, nor is there a single template that fits all. But there are three basic aspects to a disaster recovery plan: Preventive measures, detective measures, and corrective measures.

In addition, before building your disaster recovery plan, make sure that it can provide an answer to these basic questions:

  1. What is the objective and the purpose of making one?
  2. Who are the assigned team responsible when certain events occur?
  3. What is the framework and the procedure to be followed?

Plan for the worst case scenario

Since you’re planning for an unforeseen event, you might as well make sure that you have plan for the worst case scenario. That way, you’ll never be overwhelmed and you’re as prepared as you can be for any situation.

Having different tiers of backup plans is also advisable. It gives you a better assurance that when bad comes to worst, you have a system in place to make sure that these disasters are handled correctly, regardless of the disaster’s severity.

Data issues

One of the objectives of disaster recovery plan is to protect the collection of data. Almost half of the total population of business organizations experiences data loss from both physical and virtual environments. This is often due to corruption of the file system, broken internal virtual disks, and hardware failures. Thus, there is a real need for established data recovery plans such as backup features offered by many IT solution vendors.

Test-drive

Before deploying your disaster recovery plan, you need to have a sort of a test-drive to check if it works. Aside from making it work, you also need to know if it’s going to be effective. Through testing, any shortcomings can be identified and will garner corresponding resolutions to improve on your plan. Although the real score of its effectiveness can only be identified once a disaster occurs, at least you will have an idea of how your business and the recovery plan can operate during a disaster.

Building an effective disaster recovery plan is a must for your business. This might not directly lead to a positive impact on productivity but it will surely save you in the events that can possibly crush your business. Anticipating and adjusting for the things that might happen is one of the keys to a company’s success.

Setting up an effective DRP can be quite an intricate process since there are several elements that you need to consider. Should you want to learn more, give us a call and we’ll have our associates help you develop and test a plan that works best for your business.

Published with permission from TechAdvisory.org. Source.

December 26th, 2013

BCP_Dec23_CIt appears as if there is an increase in disasters striking companies around the globe. From something as small as a hacker stealing important information, to as large as a disaster that leaves your premises in ruins, disaster can strike at any time. Many companies are starting to develop plans to prepare for any disasters, two of the most common being Disaster Recovery (DR) and a Business Continuity Plan (BCP).

What is a BCP?

BCP entered the mainstream just before the year 2000, with the Y2K scare. It's a plan that covers the way a business plans for and maintains critical business functions, directly before, during and after a disaster.

The majority of plans are comprised of activities that ensure maintenance, stability, and recoverability of service. The plan is typically set up on a day-to-day basis, and covers the whole organization. In other words, it's a plan on how to remain operational during and after a disaster.

The main reason companies implement a plan like this is because they wish to remain able to provide their service or product to customers. If something happens and you are not able to deliver to your customers, there is a risk that they will simply go to another company. This will obviously cause you to lose not only customers, but valuable income, some of which may be needed to further recovery.

What is DR?

Disaster Recovery is really more focused on what happens after a disaster. Many times, it's actually a part of the overall continuity plan. While BCP focuses on the whole business, DR plans tend to focus more on the technical side of the business. This includes components such as data backup and recovery, and computer systems.

It's best to think of a BCP as an umbrella policy, with DR as part of it. If companies don't have a DR component of their overall continuity plan, there is a good chance the whole strategy will be either less effective, or useless. On the other hand, DR can actually stand alone, and many companies can do just fine without a full continuity plan.

What should DR and BCP contain?

While these plans are slightly different, they do share the same common goals - to offer support and assistance during a disaster. Therefore, regardless of what type of plan you decide to adopt, there are common elements both need to incorporate in order to be successful.
  1. An operational plan for potential disasters that could happen in your geographical area.
  2. A succession plan for you or your top management.
  3. Employee training and cross-training. Your employees should know their role in the plan and be trained in other responsibilities should someone else be unable to perform their role.
  4. A communication plan that includes ways of communicating if networks are down.
  5. Off-site locations for staff and managers to meet and work.
  6. A focus on safety. Foster partnerships and communication with local and emergency response services. Ideally, all employees should at least know basic first aid. Employees who are members of local Emergency Response Teams make great team leaders.
  7. Daily backups of your systems and data. Be sure to also train staff in the testing and recovery of systems.
  8. Training and testing of all employees to practice recovery activities in realistic role-playing scenarios.
  9. Regular audits and updates of your plans to ensure they are still relevant and able to protect your systems and company.
With a plan that is carefully prepared, tested, and updated on a regular basis, you should be able to better weather any disaster. If you are looking for information on how to develop or improve your plans get in touch with us today.
Published with permission from TechAdvisory.org. Source.