2
VIDEOS http://www.rmstech.com.au/rmswpsite/?page_id=54 https://www.youtube.com/watch?v=cxE940f7iq0
BIA AND DR STRATEGY
BUSINESS CONTINUITY AND DR STRATEGY FOR ACME
COMPANY
By,101015275_Chandrak Trivedi101013552_Meblin Sunny
BIA AND DR STRATEGY 4
LEARNING OBJECTIVES
Identification of Priorities Gap Analysis Determine BIA/DR Strategies Understand Recovery Time Frame Implementation of Project Plan
BIA AND DR STRATEGY 5
PRIORITIES High Priorities (Critical) - Windows Server Application Employees Customer Services
Medium Priorities Reputations Vendors Relationships Mainframes
Low Priorities Competitive Advantage
BIA AND DR STRATEGY 6
GAPS ANALYSIS
BIA AND DR STRATEGY 7
CURRENT RECOVERY CAPABILITIES
The IT group has tested its mainframe computer recovery plan regularly but not the Win Server applications. The crisis management structure and business continuity plans was developed but it was Out-dated. Current BIA was not supported to determine critical processes, dependencies and backup infrastructure. No alternative HOT site. Failed to address virtualization and data security.
BIA AND DR STRATEGY 8
BUSINESS IMPACT ANALYSIS In disaster, At least four week are required for the recovery of server based applications.
Not possible to achieve recovery requirements. More time to set up ready and equipped sites for continuing business.
Financial Losses,
BIA AND DR STRATEGY 9
CURRENT RECOVERY TIME FRAME
Normal Operatio
ns
Lost Data
RPO IT recovery (System/Netw
ork)
RTO = Best Effort Re-enter lost data
Normal Operatio
ns
MTO
Application/Systems Available
• Application• Services• Infrastruct
ure• Assets
• 3-5 days for computer recovery
• > 1 month for Windows Server Apps
• More Dependencies
Current Recovery Time
Frame is Undesirable.
Time
BIA AND DR STRATEGY 10
NEEDED RECOVERY CAPABILITY Data Governance, Policies and Compliance All services and application should be included in their respective recovery plan. Periodic assessment, documentation and testing of Business recovery plan. Alternatives sites – Hot, Cold or Warm according to the requirements. Backup plan Virtualization
BIA AND DR STRATEGY 11
BUSINESS CONTINUITY STRATEGIES
Hot Site Redundant Service-Providers Cloud Services Virtualization Employees Crisis Communications - Maintain trust with Client, Customers and Partners Classification of Dependencies
BIA AND DR STRATEGY 12
DISASTER RECOVERY STRATEGIES Insurance Planning, Testing and Executing of DR strategies –
Risk Assessment Prepare ProceduresProper Co-ordination
BIA AND DR STRATEGY 13
COST ESTIMATION Financial impact for 30 days - $293 Millions According to proposed strategies: Strategy Development – $ 1 Millions Hot Site (Systems, Infrastructure, Hydro, etc.) – $ 100 Millions Overtime for Employees – $ 100,000 Cloud Services – $ 5 Millions Virtualization – $ 1 Millions Plan Maintenance - $ 50,000 Insurance - $ 10 Millions
Total Cost Estimation – $ 117.15 Millions
BIA AND DR STRATEGY 14
PROJECT PLAN Identification of Business Processes Determine Key Recovery Timelines (MTO, RTO, RPO) Identify Recovery Criteria Identify minimum IT requirements Review existing IT environment Identify Recovery Strategy Alternatives
Critical Function Analysis
Recoverability Assessment
Recovery Strategies
BIA AND DR STRATEGY 15
PROJECT PLAN RECOVERY TIME FRAMENormal
Operations
Lost Data
RPO IT recovery (System/Netw
ork)
RTO <= 4 hrs.Re-enter lost
data
Normal Operatio
ns
MTO
Application/Systems Available
• Application• Services• Infrastruct
ure• Assets
• < 4 for Critical Processes
• Faster recovery
• Less Dependencies
Project Plan Recovery Time Frame is Under Tolerable limit.
Time
BIA AND DR STRATEGY 16
RECOMMENDATION Proper documentation.Develop a team which consist of personnel's from all departments.Steering committee.Employee awareness and training.Maintain disaster readiness.To be updated with new threats and vulnerabilities.
BIA AND DR STRATEGY 17
EVERYTHING WORKS ON TECHNOLOGY NOW A DAYS, SO MOST IMPORTANT
THING IS TO HAVE A GOOD BIA AND DR.INFORMATION IS MONEY + POWER
ATTACKERS ARE BEHIND INFORMATION NOT MONEY
Thank You
Top Related