In order to properly plan for disaster recovery you will need to know where you stand, specifically where the company stands. You need to completely assess the state of preparedness of the organization and understand what you need to do to be properly prepared.
In order to properly plan for disaster recovery, you should observe the following guidelines and best practices:
- Once your organization has established a BCP it is important for this plan to undergo regular testing and review. Consider conducting simulations and drills designed to evaluate the efficacy of the plan.
- If the company has not recently tested the DRP, make it a point to do so. Much like BCPs, consider the use of drills and other similar types of simulations to evaluate how well the DRP functions.
- Always consider and evaluate the proper redundancy measures for all critical resources. Look for adequate protection for systems such as servers, routers, and other devices in the event they are needed for emergency use.
- Check with all critical service providers to ensure that they’ve taken adequate precautions to guarantee that the services provided will be available.
- Check for the existence or the ability to obtain spare hardware wherever necessary. Ensure that the devices are not only appropriate for use but also can be obtained quickly in an emergency.
- Evaluate any existing SLAs currently in place so that you know what constitutes acceptable downtime.
- Establish mechanisms for communication that do not require the company resources, which may be unavailable. Such communication channels should also take into account that power may be unavailable.
- Ensure that the organization’s designated hot site can be brought online immediately.
- Identify and document any and all points of failure, as well as any up-to-date redundancy measures that have been put in place to safeguard these points.
- Ensure that the company’s redundant storage is secure.
Once the incident response process has been defined, at a high level at this point, you can turn your attention to the collection of evidence from a crime scene. While you may be involved in this process, it is possible that you will require special teams or external consultants for this task.
In many cases companies will have specially trained professionals on staff or externally contracted to respond to security incidents and collect evidence. It is important for you to know which it is or at the very least who to contact in the event an incident happens.
Thanks…