Disaster Recovery Plan Template Business Continuity

DRP BCP Template

ISO 27000, SOX, PCI-DSS & HIPAA Compliant

The Standard for Disaster Recovery and Business Continuity - Over 3,000 Companies World Wide have chosen this DRP/BCP Template

 

     

In most organizations, DR is the quintessential complex, unfamiliar task. Disasters happen so rarely that recovery operations are the opposite of routine. What's more the myriad, interconnected data, application and other resources that must be recovered after a disaster make recovery an exceptionally difficult and error-prone effort. Even if you have never built a DR plan before, you can achieve great results. Just follow the DR Template that Janco has created and you will have a functioning plan before you know it.

 

All Business Continuity / Disaster Recovery plans need to encompass how employees will communicate, where they will go and how they will keep doing their jobs. The details can vary greatly, depending on the size and scope of a company and the way it does business. For some businesses, issues such as supply chain logistics are most crucial and are the focus on the plan. For others, information technology may play a more pivotal role, and the Business Continuity / Disaster Recovery plan may have more of a focus on systems recovery.

But the critical point is that neither element can be ignored, and physical, IT and human resources plans cannot be developed in isolation from each other. (In this regard, Business Continuity / Disaster Recovery has much in common with security convergence.) At its heart, Business Continuity / Disaster Recovery is about constant communication.

Janco's Disaster Recovery Plan (DRP) is that tool which can be used as a Disaster Planning template for any size of enterprise. The Template and supporting material have been updated to be Sarbanes-Oxley and HIPAA compliant. The template comes as both a Word document and a static fully indexed PDF document. The DRP/BCP Template includes:

• Disaster Recovery Plan and Business Continuity Template (WORD and PDF)
• Business and IT Impact Analysis Questionnaire
• Work Plan
• Disaster Recovery / Business Continuity Audit Program
• Pandemic Planning Checklist
• Incident Communication Plan and Policy

Preparation for Disaster Recovery / Business Continuity in light of SOX has two primary parts. The first is putting systems in place to completely protect all financial and other data required to meet the reporting regulations and to archive the data to meet future requests for clarification of those reports. The second is to clearly and expressly document all these procedures so that in the event of a SOX audit, the auditors clearly see that the DRP exists and will appropriately protect the data.

The Disaster Recovery - Business Continuity Template can be acquired in the following ways:

 

DRP BCP Template General Description

The DRP template is over 200 pages and includes everything needed to customize the Disaster Recovery Plan to fit your specific requirement.  The electronic document includes proven written text and examples for the following major sections of a disaster recovery plan:

• Plan Introduction
• Business Impact Analysis - including a sample impact matrix
• DRP Organization Responsibilities pre and post disaster - DRP / BCP checklist
• Backup Strategy for Data Centers, Departmental File Servers, Wireless Network servers, Data at Outsourced Sites, Desktops (In office and "at home"), Laptops and PDA's.
• Recovery Strategy including approach, escalation plan process and decision points.
• Disaster Recovery Procedures in a check list format
• Plan Administration Process
• Technical Appendix including definition of necessary phone numbers and contact points
• Job Descriptions
  • Disaster Recovery Manager
  • Manager Disaster Recovery and Business Continuity
  • Pandemic Coordinator
• Work Plan to modify and implement the template. Included is a list of deliverables for each task. (Risk Assessment and Vulnerability Assessment)

There is a extensive section that shows how a full test of the DRP can be conducted.  It includes

• Disaster Recovery Manager Responsibilities
• Distribution of the Disaster Recovery Plan
• Maintenance of the Business Impact Analysis
• Training of the Disaster Recovery Team
• Testing of the Disaster Recovery Plan
• Evaluation of the Disaster Recovery Plan Tests
• Maintenance of the Disaster Recovery Plan

Click on the link below to get the DRP/BC sample pages now and make it part of your disaster recovery toolkit.

Backup Matrix - Sample from Template

---

Testimonials

Testimonial - Dave Baker - City of Hamilton -I have found the DRP template invaluable!

Testimonial - Bob Rifenbury -MCSE/CCNA Launch Testing Lab -The DRP Template saved me about 6 months of work!

Testimonial -  Kelly Keeler - Martin's Point Health Care -I have received and I began using the template immediately. IT IS GREAT! Made this process a snap for me. Cut my documentation time down from.  weeks to hours! This document has made, what began to be an overwhelming process turn into a snap!

Testimonial - Juan Stamos - Mexico City Corporation -We had a DRP in place, but needed a more user friendly structure.  The Disaster Recovery Template (Gold edition) has that structure.  It was very easy to quickly move our DRP into Janco's DRP Template -- a real added value.

---

This template is not for resale or re-distribution - Disaster Plan Template, Disaster Recovery Planning Template Disaster Recovery Template, Disaster Recovery

---

 

 

 

Disaster Recovery Business Continuity News

---

Expensive weather and climate disasters in the United States

February 2nd, 2012

Disaster Recovery and Business Continuity plans need to consider natural weather and events. The effects that natural events have on the environment directly and indirectly may be harmful to people. Forest fires and volcanoes harm air quality. Hurricanes and floods can contaminate water supplies and damage wastewater facilities. Any of these can spread contaminated materials into the environment.

The United States set a record with 12 separate billion-dollar weather/climate disasters in 2011, with an aggregate damage total of approximately $52 billion, according to the National Oceanic and Atmospheric Administration. That is just continuing the trend of the past 30 years.

These incidents have prompted many organizations to reconsider the human element during a crisis or major news event and evaluate how they communicate with employees, suppliers, investors and customers. Emergency and mass notification systems are designed to help organizations communicate to stakeholders during an incident or disruption. However, in response to the high occurrence of prominent disasters in recent years, the marketplace has been flooded with products to address emergency and mass notification needs. The need to diligently evaluate vendors is critical to ensure that services will meet an organization's specific requirements.

- more info

---

Disaster Life Cycle

January 20th, 2012

A business disruption has a life cycle; it starts small and could potentially become a disaster of epic proportion, depending on its duration. The longer the duration, the greater the disruption to your business. Your organization’s response should shift as an incident evolves from threat to emergency to crisis to disaster. It’s one thing to say access to contract data isn’t essential for a day or two, but what about a week or two? This is why it’s important to protect more than just data. Now that you know what processes are critical to the operation of your business, you can consider threats according to their impact on those critical processes.

To help you mitigate impact to your core processes, your plan should address three key phases:

• Business Continuity Response - these are the steps you take immediately to sustain your core processes, your primary business priorities
• Disaster Recovery Response - these are the steps you take to extend your core processes indefinitely and address your secondary priorities
• Restoration Planning Response - these are the steps you take to restore your business to its pre
  -incident level

- more info

---

DRP for virtual data centers

January 8th, 2012

Protecting application data from disasters is critical to keeping businesses up and running. Yet traditional disaster recovery solutions were never intended to address the needs of today's virtualized data center.

As a result, the cost and complexity of using traditional disaster recovery products to address data replication needs in highly virtualized environments forces many organizations to forego disaster recovery altogether.

- more info

---

Business continuity management will minimise business interruptions

December 14th, 2011

In addition to this, it is integral for managers to devise business continuity plans to deal with the threats identified by setting out what needs to be done should a certain event occur.

And although not possible to avoid all risks, business continuity management (BCM) can minimise the disruption to a business to a great extend, protecting its share price, stakeholder relations, and reputation, among others.

With that said, BCM is a critical strategic function that cannot be neglected by any organisation whatsoever.

Still, managers often neglect charting a strategic course for their company's future survival, which in itself poses a huge risk, seeing that there are many internal and external events that could impact on a company's overall performance, such as:

• the death of the CEO, owner or key staff member
• fire, flood or earthquake damage - this could hamper operations while organisations repair damages or settle insurance claims
• an interruption in the supply chain
• the loss of a major client
• production line failure or breakdown
• failure to stay abreast of technological innovation
• product failure or contaminationinterruption in telecommunications or power supply

  

- more info

---

Tape still used in my DR plans

November 5th, 2011

Data protection requirements are further necessary to comply with regulated and long periods of data retention. For example, laws about data storage and privacy apply to the vertical markets of the medical industry. HIPAA requires medical companies to store patient’s medical records for five to seven years, and to store their childhood records for the life of the patient. This data also has to be highly secure and easily accessible to address patient care and also for legal reasons, such as a mishap in the office. Laws exist like this in many other industries as well, and a company is advised to research legal strictures on data protection. If there is a law requiring compliance, companies must often store more data for a longer period of time, necessitating secure, cost‐effective storage.

These requirements build a basis for using tape for data protection in the mid‐market, in part because of the high likelihood that organizations already use some form of tape in their IT set‐ups. Tape continues to be the preferred home for nearly 70 percent of the world's data. Using tape for DR automatically builds on existing infrastructure and practices, and provides cost‐effective long‐term storage that addresses DR and legal compliance.

- more info