Disaster Recovery Plan Template Business Continuity

DRP BCP Template

ISO 27000, SOX, PCI-DSS & HIPAA Compliant

The Standard for Disaster Recovery and Business Continuity - Over 3,000 Companies World Wide have chosen this DRP/BCP Template

 

     

In most organizations, DR is the quintessential complex, unfamiliar task. Disasters happen so rarely that recovery operations are the opposite of routine. What's more the myriad, interconnected data, application and other resources that must be recovered after a disaster make recovery an exceptionally difficult and error-prone effort. Even if you have never built a DR plan before, you can achieve great results. Just follow the DR Template that Janco has created and you will have a functioning plan before you know it.

 

All Business Continuity / Disaster Recovery plans need to encompass how employees will communicate, where they will go and how they will keep doing their jobs. The details can vary greatly, depending on the size and scope of a company and the way it does business. For some businesses, issues such as supply chain logistics are most crucial and are the focus on the plan. For others, information technology may play a more pivotal role, and the Business Continuity / Disaster Recovery plan may have more of a focus on systems recovery.

But the critical point is that neither element can be ignored, and physical, IT and human resources plans cannot be developed in isolation from each other. (In this regard, Business Continuity / Disaster Recovery has much in common with security convergence.) At its heart, Business Continuity / Disaster Recovery is about constant communication.

Janco's Disaster Recovery Plan (DRP) is that tool which can be used as a Disaster Planning template for any size of enterprise. The Template and supporting material have been updated to be Sarbanes-Oxley and HIPAA compliant. The template comes as both a Word document and a static fully indexed PDF document. The DRP/BCP Template includes:

• Disaster Recovery Plan and Business Continuity Template (WORD and PDF)
• Business and IT Impact Analysis Questionnaire
• Work Plan
• Disaster Recovery / Business Continuity Audit Program
• Pandemic Planning Checklist
• Incident Communication Plan and Policy

Preparation for Disaster Recovery / Business Continuity in light of SOX has two primary parts. The first is putting systems in place to completely protect all financial and other data required to meet the reporting regulations and to archive the data to meet future requests for clarification of those reports. The second is to clearly and expressly document all these procedures so that in the event of a SOX audit, the auditors clearly see that the DRP exists and will appropriately protect the data.

The Disaster Recovery - Business Continuity Template can be acquired in the following ways:

 

DRP BCP Template General Description

The DRP template is over 200 pages and includes everything needed to customize the Disaster Recovery Plan to fit your specific requirement.  The electronic document includes proven written text and examples for the following major sections of a disaster recovery plan:

• Plan Introduction
• Business Impact Analysis - including a sample impact matrix
• DRP Organization Responsibilities pre and post disaster - DRP / BCP checklist
• Backup Strategy for Data Centers, Departmental File Servers, Wireless Network servers, Data at Outsourced Sites, Desktops (In office and "at home"), Laptops and PDA's.
• Recovery Strategy including approach, escalation plan process and decision points.
• Disaster Recovery Procedures in a check list format
• Plan Administration Process
• Technical Appendix including definition of necessary phone numbers and contact points
• Job Descriptions
  • Disaster Recovery Manager
  • Manager Disaster Recovery and Business Continuity
  • Pandemic Coordinator
• Work Plan to modify and implement the template. Included is a list of deliverables for each task. (Risk Assessment and Vulnerability Assessment)

There is a extensive section that shows how a full test of the DRP can be conducted.  It includes

• Disaster Recovery Manager Responsibilities
• Distribution of the Disaster Recovery Plan
• Maintenance of the Business Impact Analysis
• Training of the Disaster Recovery Team
• Testing of the Disaster Recovery Plan
• Evaluation of the Disaster Recovery Plan Tests
• Maintenance of the Disaster Recovery Plan

Click on the link below to get the DRP/BC sample pages now and make it part of your disaster recovery toolkit.

Backup Matrix - Sample from Template

---

Testimonials

Testimonial - Dave Baker - City of Hamilton -I have found the DRP template invaluable!

Testimonial - Bob Rifenbury -MCSE/CCNA Launch Testing Lab -The DRP Template saved me about 6 months of work!

Testimonial -  Kelly Keeler - Martin's Point Health Care -I have received and I began using the template immediately. IT IS GREAT! Made this process a snap for me. Cut my documentation time down from.  weeks to hours! This document has made, what began to be an overwhelming process turn into a snap!

Testimonial - Juan Stamos - Mexico City Corporation -We had a DRP in place, but needed a more user friendly structure.  The Disaster Recovery Template (Gold edition) has that structure.  It was very easy to quickly move our DRP into Janco's DRP Template -- a real added value.

---

This template is not for resale or re-distribution - Disaster Plan Template, Disaster Recovery Planning Template Disaster Recovery Template, Disaster Recovery

---

 

 

 

Disaster Recovery Business Continuity News

---

Business Continuity Planning 101

January 29th, 2012

The basic process for developing a business continuity plan is:

• Create a business continuity planning team: Members should be from operations management, the chief security officer, the IT department, legal staff, and human resources.
• Define leadership roles: Determine which executives and employees are critical to operating the business (and supporting customers) that need to have access to key systems and information at all time.
• Assume the worst and plan for needed extra capacity: Before an event occurs, businesses need to plan ahead for increased network bandwidth and secured remote access requirements.
• Define emergency voice and data communications solutions: There are many to choose from, but a SSL VPN is one of the leading solutions to provide flexible, remote access, which is essential to any business continuity plan.
• Define access points for operations, network and IT: Create a business continuity portal for employees and partners. If the company has an Intranet, this site becomes command central from which employees can access information - HR policies, emergency contacts and a "start here" feature should be included.
• Contract for a secondary back-up site: Should the primary site be unavailable, companies should have a real-time mirror of data and staff housed at a secure facility.
• Backup data: In the event that the secondary site is unavailable, organizations should plan for multiple layers of failover.
• Plan to utilize smartphones and tablets: With mobile devices and "wireless networks", IT departments can leverage these tools to ensure complete connectivity in times of emergencies.
• Pre-arrange Internet meeting capabilities: In the event of an office closure, employees still need to communicate internally or with external parties (i.e. suppliers, customers). Implement the technology before it is needed
• Review number of sites and VPN gateways: Conducting an annual audit to provide a complete picture of your network and the ability to address problem areas before a disaster strikes.
• Test and  test again: These 'fire drills' enable the business continuity team to see how the current system is working, especially when employees are accessing information from remote locations (i.e. from home, a relative's house, and hotel). Once complete, those in management, IT and human resources can modify their business continuity plan accordingly.
  

- more info

---

Core backup and recovery concerns

January 20th, 2012

CIOs and IT Managers need to consider manadated compliance requirements

• Question that need to be answered are:
• Is our data safe in transit and at rest?
• What prevents hackers from gaining access to our data?
• Is our data properly handled, stored, and deleted?
• Who can access our data?
• What are the benchmark measurements?
• Is our data backup strategy compliant?
• Will our recovery be successful?

- more info

---

How long should it take to create a business continuity plan?

January 7th, 2012

Business continuity planning is a continual process, and not something that is done once and filed away to be used in an emergency. In error many organisations treat the creation of a business continuity plan as a normal project, subsequently deploying the plan and handing over to an operational department for maintenance.

In most organizations, DR is the quintessential complex, unfamiliar task. Disasters happen so rarely that recovery operations are the opposite of routine. What's more the myriad, interconnected data, application and other resources that must be recovered after a disaster make recovery an exceptionally difficult and error-prone effort.

How to create a business continuity plan...

- more info

---

Which states had the fewest major weather disasters

December 14th, 2011

The U.S. has sustained 112 weather/climate disasters over the past quarter century in which overall damages/costs reached or exceeded $1 billion. The total standardized losses for the 112 events exceed $750 billion, according to The National Oceanic and Atmospheric Administration (NOAA), National Climatic Data Center.

- more info

---

Foundation necessary for disaster recovery and business continuity

November 5th, 2011

As an essential foundation step toward disaster recovery and business continuity readiness, are these best practices:

• Extending management technologies that automate the process of asset management, system configuration, and software distribution (This reduced the number of steps that required hands-on intervention and reduced IT staff time.)
• Constraining their environment to a finite number of standard processors, operating systems, database products - making it easier to maintain and update
• Consolidating servers over a long-term road map, reducing the number of server "footprints" that had to be maintained and updated
• Standardizing IT practices, especially management of settings and configurations
• Providing protected storage space within the organization's storage resources and establishing rules for backup of mission-critical data (This ensured adequate capacity for backup and recovery procedures and for restart of applications.)
  

- more info