DRP BCP Template
ISO 27000, SOX, PCI-DSS & HIPAA Compliant
The Standard for Disaster Recovery and Business Continuity - Over 3,000 Companies World Wide have chosen this DRP/BCP Template
In most organizations, DR is the quintessential complex, unfamiliar task. Disasters happen so rarely that recovery operations are the opposite of routine. What's more the myriad, interconnected data, application and other resources that must be recovered after a disaster make recovery an exceptionally difficult and error-prone effort. Even if you have never built a DR plan before, you can achieve great results. Just follow the DR Template that Janco has created and you will have a functioning plan before you know it.
All Business Continuity / Disaster Recovery plans need to encompass how employees will communicate, where they will go and how they will keep doing their jobs. The details can vary greatly, depending on the size and scope of a company and the way it does business. For some businesses, issues such as supply chain logistics are most crucial and are the focus on the plan. For others, information technology may play a more pivotal role, and the Business Continuity / Disaster Recovery plan may have more of a focus on systems recovery.
But the critical point is that neither element can be ignored, and physical, IT and human resources plans cannot be developed in isolation from each other. (In this regard, Business Continuity / Disaster Recovery has much in common with security convergence.) At its heart, Business Continuity / Disaster Recovery is about constant communication.
Janco's Disaster Recovery Plan (DRP) is that tool which can be used as a Disaster Planning template for any size of enterprise. The Template and supporting material have been updated to be Sarbanes-Oxley and HIPAA compliant. The template comes as both a Word document and a static fully indexed PDF document. The DRP/BCP Template includes:
- Disaster Recovery Plan and Business Continuity Template (WORD and PDF)
- Business and IT Impact Analysis Questionnaire
- Work Plan
- Disaster Recovery / Business Continuity Audit Program
- Pandemic Planning Checklist
- Incident Communication Plan and Policy
Preparation for Disaster Recovery / Business Continuity in light of SOX has two primary parts. The first is putting systems in place to completely protect all financial and other data required to meet the reporting regulations and to archive the data to meet future requests for clarification of those reports. The second is to clearly and expressly document all these procedures so that in the event of a SOX audit, the auditors clearly see that the DRP exists and will appropriately protect the data.
The Disaster Recovery - Business Continuity Template can be acquired in the following ways:
Disaster Recovery Business Continuity Template (WORD)
- Disaster Recovery Business Continuity Audit Program - Compliant with ISO 27031, ISO 22301, and ISO 28000
- Disaster Recovery Manager Job Description
- Manager Disaster Recovery & Business Continuity Job Description
- Application Inventory and Business Impact Analysis Questionnaire
- Incident Communication Plan and Policy with BEST PRACTICES for
- News Conferences
- Media Relations
- Social Network Checklist
- Included with the template are Electronic Forms which have been designed to lower the cost of maintenance of the plan. Electronic Forms that can be e-mailed, completed via a computer or tablet, and stored electronically including:
- LAN Inventory, Location Contact Numbers, Off-Site Inventory, Personnel Locations, Plan Distribution, Remote Location Contact Information, Server Registration , Team Call List, and Vendor Contact Information
- Added Bonus - Safety Program Electronic Forms -- Area Safety Inspection, Employee Job Hazard Analysis, First Report of Injury, Inspection Checklist – Alternative Locations, Inspection Checklist – Office Locations, New Employee Safety Checklist, Safety Program Contact List, and Training Record
- Disaster Recovery Business Continuity Template
- 20 Job Descriptions (WORD)
- Chief Information Officer - CIO, Chief Security Officer - CSO, Chief Compliance Officer - CCO, Chief Mobility Officer - CMO, VP Strategy and Architecture, Director Disaster Recovery and Business Continuity, Director e-Commerce, Director Media Communications, Manager Disaster Recovery, Manager Disaster Recovery and Business Continuity, Disaster Recovery Coordinator, Disaster Recovery - Special Projects Supervisor, Manager Database, Capacity Planning Supervisor, Manager Media Library Support, Manager Record Administrator, Manager Site Management, and Pandemic Coordinator
- Disaster Recovery Business Continuity Template
- Security Manual Template
- 25 Job Descriptions
- Chief Information Officer - CIO; Chief Compliance Officer - CCO; Chief Security Officer - CSO;VP Strategy and Architecture; Director e-Commerce; Database Administrator; Data Security Administrator; Manager Data Security; Manager Database; Manager Disaster Recovery; Manager Disaster Recovery and Business Continuity; Pandemic Coordinator; Manager Facilities and Equipment; Manager Media Library Support; Manager Network and Computing Services; Manager Network Services; Manager Site Management; Manager Training and Documentation; Manager Voice and Data Communication; Manager Wireless Systems;Capacity Planning Supervisor; Disaster Recovery Coordinator; Disaster Recovery - Special Projects Supervisor; Network Security Analyst; System Administrator - Unix; System Administrator - Windows
- Disaster Recovery Business Continuity Template
- Security Manual Template
- 270 Job Descriptions which includes all of the job descriptions in the premium edition
"Best of Breed - Best Practices Disaster Recovery Planning / Business Continuity Planning, Security Policies, IT Job Descriptions" according to the IT Productivity Center
DRP BCP Template General Description
The DRP template is over 200 pages and includes everything needed to customize the Disaster Recovery Plan to fit your specific requirement. The electronic document includes proven written text and examples for the following major sections of a disaster recovery plan:
- Plan Introduction
- Business Impact Analysis - including a sample impact matrix
- DRP Organization Responsibilities pre and post disaster - DRP / BCP checklist
- Backup Strategy for Data Centers, Departmental File Servers, Wireless Network servers, Data at Outsourced Sites, Desktops (In office and "at home"), Laptops and PDA's.
- Recovery Strategy including approach, escalation plan process and decision points.
- Disaster Recovery Procedures in a check list format
- Plan Administration Process
- Technical Appendix including definition of necessary phone numbers and contact points
- Job Descriptions
- Disaster Recovery Manager
- Manager Disaster Recovery and Business Continuity
- Pandemic Coordinator
- Work Plan to modify and implement the template. Included is a list of deliverables for each task. (Risk Assessment and Vulnerability Assessment)
- Disaster Recovery Manager Responsibilities
- Distribution of the Disaster Recovery Plan
- Maintenance of the Business Impact Analysis
- Training of the Disaster Recovery Team
- Testing of the Disaster Recovery Plan
- Evaluation of the Disaster Recovery Plan Tests
- Maintenance of the Disaster Recovery Plan
Click on the link below to get the DRP/BC sample pages now and make it part of your disaster recovery toolkit.
Backup Matrix - Sample from Template
Testimonial - Dave Baker - City of Hamilton -I have found the DRP template invaluable!
Testimonial - Bob Rifenbury -MCSE/CCNA Launch Testing Lab -The DRP Template saved me about 6 months of work!
Testimonial - Kelly Keeler - Martin's Point Health Care -I have received and I began using the template immediately. IT IS GREAT! Made this process a snap for me. Cut my documentation time down from. weeks to hours! This document has made, what began to be an overwhelming process turn into a snap!
Testimonial - Juan Stamos - Mexico City Corporation -We had a DRP in place, but needed a more user friendly structure. The Disaster Recovery Template (Gold edition) has that structure. It was very easy to quickly move our DRP into Janco's DRP Template -- a real added value.
Disaster Recovery Business Continuity News
Backup - Disaster Recovery - Business Continuity - Current Articles
August 5th, 2015
- Backup and Retention Policy Backup and Retention Policy Backup and retention are two issues that all organizations vface. In todayÂ’s fast-paced and highly virtualized IT, organizations now more than...
- 10 Backup Best Practices supplementing a disaster recovery and business continuity solution with the cloud 10 Backup best practices Â– supplementing a disaster recovery and business continuity back-up solution with the cloud Backup best practices are used by many CIOs...
- Top 10 backup and recovery findings for small to mid-sized businesses Backup is a lynch pin of disaster recovery and business continuity plans A recent survey of small to mid-sized business (SMB) studied backup and recovery...
- Top 10 Backup Best Practices 10 Backup Best Practices Â– Rules of the Road for CIOs and DR/BC Managers Top 10 Backup Best Practices Â– Many CIOs want to improve...
- Top 10 Selection Criteria for a Disaster Recovery Cloud Provider Cloud disaster recovery business continuity When looking for cloud providers of Disaster Recovery and Business Continuity Services you need to establish that they will be...
Best Practices for Backup, Cloud Backup and Mobile Device Backup
Question that need to be answered are:
- Is our data safe in transit and at rest?
- What prevents hackers from gaining access to our data?
- Is our data properly handled, stored, and deleted?
- Who can access our data?
- What are the benchmark measurements?
- Is our data backup strategy compliant?
- Will our recovery be successful?
Small Buisness impacted most when disasters occur
July 1st, 2015
Downtime and data loss caused by natural disasters can be detrimental to any small business. On average, survey respondents said it would take 16 days to recreate or recover their files Â– and nearly a third said they would never be able to recover or recreate all of their important business data if it was lost.
In addition to lost time, data loss can hit a small business where it hurts Â– their bank account. Carbonite found that on average, small businesses would lose $2,976 per day if they were unable to operate. This means the average small business could lose a devastating $47,616 over the 16 days it takes them to recover their data.
More than two-thirds of small businesses have not created a disaster recovery plan and 62 percent of small businesses mistakenly think that any damage caused by a natural disaster would be covered by insurance. In fact, data loss isn't covered by traditional insurance. And even though thousands of small businesses were displaced following Superstorm Sandy, nearly half of small business owners don't have an alternative place they could work from if their work place becomes a disaster zone.more info
Disaster Plans need to take Social Media into account
May 28th, 2015
If the organization accepts the use of social media as part of its business operations, it may elect to incorporate social media processes in its emergency communications policies and procedures for both disaster recovery and business continuity situations. For example, in addition to an automated notification system that sends emergency messages and alerts to employees, the company may also designate staff to post messages on various social media sites to extend the effective reach of the message.
How do you balance the business continuity disaster recovery risk and investment equation? Is the potential risk greater than the investment? The facts are:
- 43% of companies experiencing disasters never reopen, and 29% close within two years.
- 93% of businesses that lost their data center for10 days went bankrupt within one year.
- 40% of all companies that experience a major disaster will go out of business if they cannot gain access to their data within 24 hours.
Based on the nature of the incident, however, company management may wish to confer with its internal communications staff as well as its emergency response team to determine if a message going out on social media is desirable, and will not have a negative impact on the firm's reputation and ability to operate. This strategy is particularly important considering that media outlets frequently monitor social media sites for newsworthy stories. Be sure to incorporate social-media-based policies and procedures into business continuity (BC) and DR plans.- more info
After the fact taxes can impact Data Center Recovery Strategy
April 27th, 2015
A story in the Salt Lake Tribune has indicated that a Utah law passed this year has added a 6% tax to the cost of power purchased from Rocky Mountain Power.
Utah Governor Gary Herbert's staff received an email expressing the NSA concerns about the new tax, pointing out that it came as a surprise and that stable power prices were one of the major factors that led to the selection of the Utah site. The surprise part was itself surprising, as an attorney for Utah stated that the agency had been informed of the proposed tax before the measure had been signed by the Governor.
With an estimated yearly power bill of $40 million, the tax would add an additional $2.4 million to the operating costs of the datacenter.more info
How to re-establish your digital reputation after a disaster occurs
April 24th, 2015
There is a definite pattern behaviors that helps leadership reestablish trust following a trust-busting, reputation-redefining circumstance.
NEW Electronic Form - Incident Communication Contact Form
To survive an incident such as a business interruption, security breach, or a product recall, organizations need more than a successful communication strategy Â– they need an incident communication plan.
The overall objectives of a incident communications plan should be established at the outset. The objectives should be agreed upon, well understood, and publicized. For example, will the primary objective of the communications plan be for communications only to employees, and only during a disaster? Or is the intent to advise customers of interruptions to service? Or is it for investors and stockholders? Or regulatory agencies? Or is it some combination of these?
- more info
- Stop producing victims and critics: change your behavior, change your language, change your vocabulary, and recognize the power victims have to further damage your reputation and trust relationships.Leadership Recovery Following Damaging Situations: Six Strategies
- Build followerships: Reconnect, reestablish, and reconvene those who are critical to reestablishing your leadership and trust.
- Build trust at every opportunity: Trust is a behavior, trust must be vocalized, and trust must be explained and expected.
- Rebuild and maintain your base: Focus on those closest to you, employees, retirees, their families, as well as those with who the organization has relationships.
- Manage the victim dimension: Victims and critics live forever. They are always with you. Pay attention to them, literally.
- Manage your own destiny: Everything said, written, broadcast or otherwise created about you and your organization lives forever. You need a strategy to correct, clarify and comment on these things.