Go to Top

What you should include in your disaster recovery plan

Managing, collecting, processing, transmitting and storing data can be a significant challenge for organisations. With the amount of data, organisations are handling increasing every year, data centres now store more critical data than ever before. However, as the number of stored data increases, so does the risk of data crashes. Having a disaster recovery plan in place is therefore essential to protect organisations from a variety of external circumstances.

Protecting your business from malware 

Despite the fact software and hardware technology has improved, it is highly likely a data crash will affect most data owners. Whether it is due to a physical error, a corrupt file system, or a user error the consequences of a data crash can be catastrophic.

In 2018, the FBI reported 1,493 cases of ransomware with a total loss of $3,621,857. New forms of ransomware have appeared at an alarming rate, with the most recent being SamSam, CrypoFortress, and TeslaCrypt.

The best way to protect your business from ransomware is by having a secure and efficient backup. You should test your backup regularly to ensure it works optimally that way you can gain access to your backup data quickly when necessary.

Business Continuity Plans and Disaster Recovery Plans

You should also have a Business (BCP) in place and a Disaster Recovery Plan (DRP).

A BCP is a documented plan that lays out the steps to take when an organisation is affected by unexpected scenarios that are often business-critical. A good BCP covers the need for resources, processes, and functions to get back to regular operation, reducing the amount of downtime.

A DRP is a documented process for reconstructing a company’s IT infrastructure following an incident.

Six critical points you should cover in your DRP and BCP

  • A good BCP/DRP should include all possible types of incident and scenarios, e.g. human error, natural disasters, hacking attacks.
  • Involve all relevant employees when preparing your BCP and DRP; this will ensure that the process is thorough and likely aspects are covered.
  • Test your plans regularly. Tests will show your weaknesses and will help you equip your organisation for the day something dramatic happens.
  • As it is critical for a business to keep its systems updated with new versions and licences, the same goes for plans. Plans should be continuously updated and maintained. It is not uncommon for a BCP and DRP to be hundreds of pages, so it is a good idea to divide it into relevant parts, making it easy to orientate.
  • Ensure you document your plan in writing and keep it in a safe place. It may seem simple, but when everyone is in a state of panic, having to search around the business premises for your BCP/DRP is the last thing you will want to be doing.
  • Make sure you establish contact with a data recovery partner and keep its details in your DRP. Having a data recovery company on speed-dial could make all the difference in a time-sensitive situation.

Read more about the possibilities in our white paper – Ransomware Data Recovery for the Enterprise

Image – Adobe Stock


, , , , ,