Disaster Recovery Plan (DRP) for Inductor
DISASTER RECOVERY PLAN 7
DisasterRecovery Plan (DRP) for Inductor Company
DisasterRecovery Plan (DRP) for Inductor Company
Adisaster recovery plan is a common process or set of measures usedfor the sole function of recuperating and protecting businessInformation Technology infrastructure in the incident of a disaster.The plan is typically documented in writing and spells out proceduresa company or organization is to pursue in the incident of anaccident. The disaster could be environmental, fabricated or natural.Fabricated events can be unintentional (such as, cyber crime) orintentional, for example, a terrorist incident. Given InductorCompany`s increasing reliance on Information Technology in theiroperations, the disaster recovery plan will also be associated withthe recuperation of IT assets, facilities, and data.
Benefitsof a DRP
It gives security assurance to the company and its employees
Lessening possibility of delays during a disaster
Providing a standard for trying out the DRP arrangement
Limiting possible legal liabilities
Reducing avertable stressful work atmosphere
Provide an assurance of the reliability of support systems
Limiting decision making during a disaster period
The three control measures of a DRP
Three primary strategies feature in almost all disaster recovery plans:
Preventivemeasures are aimed at thwarting disasters from happening. Thesemeasures intend to identify and minimize risks. They are planned toalleviate or to avert an event from occurring. The measures mayinclude keeping data backups and offsite storage, installinggenerators, using surge protectors to protect electric appliances forpower surges, and conducting a routine inspection of the businesspremises to identify possible threats (Hiatt 2000).
Detectivemeasures are adopted to ascertain the presence of any unwanted eventswithin the IT infrastructure. The principal objective of Detectivemeasures is to discover new possible threats. These may tests involveusing the latest antivirus software, putting in fire alarms,installing server and system mounting software, and conducting exercise sessions for the workforce. These types of measures aremeant to establish or uncover unnecessary events (Hiatt 2000).
Correctiveactions aim to restore a system subsequent to a disaster or elseunwanted incident takes place. These may include keeping vitaldocuments in the DRP or protecting the company through subscriptionto a suitable indemnity policy, following a "lessons learned"inspired session (Hiatt 2000).
Asa matter of best practice, DR plans should be carefully tested andassessed on a consistent basis. Systematic DRPs include documentationwith the procedures for testing the effectiveness of the program. Thetests will offer the organization the guarantee that all compulsorysteps are incorporated into the plan. Other grounds for testingcomprise:
Identifying areas that need modification in the plan
Determining the viability and compatibility of backup measures and facilities
Providing impetus for updating and maintaining the disaster recovery plan
Demonstrating the ability of the organization to recover
Afterthe completion of the testing procedures, an initial "dry run"of the program is carried out by conducting a walk-through test. Thetest provides extra information about any steps that may need to add,changes in procedures that are not sufficient and any otherappropriate adjustment. An actual performing of a "dry run"test is necessary for determining the effectiveness of a plan. TheDRP is subsequently updated to correct any issues identified orarising during the test. Initially, testing of the program isconducted in sections and after regular business hours to reducedisruptions to the overall operations of the company organization. Asthe plan is further refined, upcoming tests are undertaken duringregular business working hours. The tests will involve the following:
Oncethe DR plan is complete and appropriated tests thoroughly done, it isthen forwarded to the management for endorsement. It is the ultimateresponsibility of the top management to ensure that the company has afully functional, documented and tested plan. The company managementis accountable for establishing the policies, measures andresponsibilities for comprehensive emergency planning, and assessmentand approving the contingency plan annually, documenting such reviewsin writing (Hiatt 2000).
Adocument retention strategy is a written policy designed to guaranteethat the recorded communications of a business are managed in aneffective, efficient, and legal manner. As used in this discussion, adocument retention plan should set out, at minimum:
The documents types that must be preserved by an organization
The periods for which particular types of material must be maintained
How the plan is to be managed, as well as who will be answerable for its implementation and administration.
Aneffective document retention policy should contain the followingelements:
As with any organizational policy, the date of the policy
A schedule enlisting the types of documents that must be retained, the periods for which each type of material must be maintained.
The particulars of the persons in the organization to which any document retention query should be addressed
Anyother preservation obligations, for instance, if an organizationdecides to oblige employees to dispose occasionally of documents thatare no longer essential to be retained
Resumingoperations after a disaster
Asdiscussed before, the company will have a website that allowsemployees to access company files and emails while at their homes.The proposal suggested that the organization uses the NotariesInstant Virtual Extranet (IVE) stand-alone appliance that providingsecure remote access with granular access control and is a snap toset up. The software SecureSockets Layer(SSL) through ordinary web browsers. In addition, the company shouldadopt a filing system that incorporates cloud storage of documents.This will allow the documents to be accessible remotely no matter thelocation of an employee.
Hiatt,C. (2000). Aprimer for disaster recovery planning in an IT environment.Hershey, Pa.: Idea Group Pub.