News for the Disaster Recovery Planning Template

The Disaster Recovery Planning Template News feed is an XML news feed that you can subscribe to and re-publish on your web site or blog. The only requirement that you need to meet is that the feed is included with no modifications and that the links within the feed are retained as is.

If you wish to subscribe to this news feed the option that you have is:

  • Disaster Recovery Planning Template News Feed

  • Disaster Recovery Best Practices

    DRP Template and Security Manuual Template

    CIOs and management executives say they have disaster recovery and business continuity under control

    Best Practices - Top 10 - Janco has found that successful organization typically follow or have implemented these 10 best practices.

    1. Have management communicated that disaster recovery is not a tactical IT project but as a strategic IT asset.
    2. Create a disaster recovery and business continuity process that is integrated into the organization
    3. Allocate costs associated with the disaster recovery business continuity plan as part of the base overhead so that costs are distributed across the entire organization
    4. Treat disaster recovery and business continuity as "mission critical" for cost and staff allocations
    5. Establish metrics for the process and timing of recovery events
    6. Test the plans at least once every six months or whenever there is major enhancement to the enterprise's computing or operational infrastructure
    7. Monitor how other enterprises and your competitors are faring after and event occurs
    8. Quarterly review you media communication protocol for who says what when to whom when an event occurs
    9. Pool your assets and personnel to provide resilience capabilities for interconnected systems or collaborative technologies such as payments or check processing.
    10. Test the back-ups (at least quarterly) so that what is taken is what is needed for recovery and that it meets your recovery performance metrics.

    Read on  Order DRP  DRP Sample

    - Disaster Recovery Best Practices

    ISO 27002:2022 governance model changes

    ISO 27002:2022 changes to ISO 27002:2013

    ISO 27002:2022 IT Governance InfrastructureThe 2022 version of the Standard is significantly longer than the 2013 version.

    • The title has been modified;
    • Lists 93 controls (against the 114 ones of the previous version);
    • Controls are grouped into 4 themes rather than 14 clauses;
    • New controls have been added; and
    • Controls now have five types of attribute

    Rather than the 14 sections of ISO 27002:2013, ISO 27002:2022 now has 4 sections and two annexes:

    • Organizational controls (clause 5): Section contains all controls related to various organizational issues, comprising 37 controls.
    • People controls (clause 6): Section focuses on controls related to human resources security, comprising 8 controls.
    • Physical controls (clause 7): Section focuses on controls related to the physical environment, comprising 14 controls.
    • Technological controls (clause 8): Section focuses on controls related to technological solutions, comprising 34 controls.
    • Annex A - Using attributes: Annex A provides a matrix of all the new controls, and it compares their attributes and provides suggestions on how the controls might be used according to their attributes.
    • Annex B - Corresponds with ISO/IEC 27002:2013: Annex B provides a mapping between controls from this version and the controls from the previous edition.

    Read on IT Governance

    - ISO 27002:2022 governance model changes

    IT Governance Infrastructure addresses DR/BC

    IT Governance InfrastructureIT Governance offering helps to implement Best Practices

    The template covers everything from the basics to the organizational inter-relationships. Included in the template are:

    • Strategy and Charter Statement of Authority - Includes not only CIOs but also an IT Management Council (Steering Committee) and functional group leaders.
    • IT Management Structure - Organizational approaches, roles and responsibilities for both centralized and de-centralitized organizations.
    • Compliance - Objectives and responsibilities for IT, users, and auditors
    • Personnel Practices - Everything in the employment life-cycle
    • ERP and Omni Commerce - Strategy and best practices defined
    • Controls - Definition of types and risk analysis
    • Application Development Standards - Includes quality assurance requirements
    • Backup and Recovery - Strategy and process alternatives
    • Disaster Recovery and Business Continuity - Includes critical function analysis
    • Security - Road map to how and what including appropriate management actions
    • Access Control - Including separation of duties and definition of least privilege
    • Server and Data Center Facility Requirements - Best practices to protect the physical assets
    • Technical Guides including: HIPAA Audit Program; ISO Security Audit Checklist; CIO job description; Security Management Compliance Checklist; and much more.

    Read On

    - IT Governance Infrastructure addresses DR/BC

    Disaster Planning Business Continuity fails after cyberattack

    Disaster Planning Business Continuity fails - cyberattack forces company to close its doors

    business continuity and securityAn Arkansas-based telemarketing closed its doors before a holiday due to a cyberattack.  Over 300 employees were let go and told to find new jobs. The primary casuse was that business continuity and diaster recovery efforts didn't go according to plan following a ransomware attack that took plas two months earlier.  

    Employees of the firm were notified of the decision just two days before a holiday, via a postal letter sent by the company's CEO.

    Local media reported, employees had no idea the company had even suffered a ransomware attack, and the layoffs were unexpected, catching many off guard.

    Approximately two months ago the company's servers were attacked by malicious software that basically held them hostage.  When the ransom was paid to get our systems back up and running, business continuity plan was not able to get them backup and running.

    Order DRP BCP Security Bundle Download Sample

    - Disaster Planning Business Continuity fails after cyberattack

    Business Continuity of Colonial Pipeline was not well planned for

    Ransomware Hits Home with Colonial Pipeline cyberattack - Business Continuity Plan was lacking

    Business Continuity PlanningData breaches and security incidents taking place at enterprise organizations are commonplace. Hardly a week goes by when we don't hear of yet another cyberattack on a well-known company -- but when core, critical utilities and country infrastructure is involved, things take an even more serious turn.

    Gas prices across the conuntry rose to over $3 a gallon.  Colonial Pipeline says the recovery will take some time as a system restart plan is being "developed". Some small lateral lines are back in service. However, it may be days before full functions are restored, and in the meantime, gasoline futures are rising and there is concern that some parts of the US may experience fuel shortages.

    Read On Business Continuity Planning 

    Order DRP BCP Template  DRP BCP Sample

    - Business Continuity of Colonial Pipeline was not well planned for