For ACP-South Texas chapter program meeting in October 2012 only. Do not cite, copy or distribute without the author's consent. 1
|
|
- Samson Dean
- 5 years ago
- Views:
Transcription
1 Agenda Company and Program Overview The 4Ps of DR Planning People Property Process Performance Application Lifecycle Management Angela Mestre, MPH, MBA, CBCP, CISA, PMP Education Director, ACP - South Texas Company Profile Peace time War time Challenges, Lessons learned and Conclusion IT Continuity and Disaster y Program Milestones Established in 968, privately held Enterprise Products Company and its affiliates own significant equity interests in three publicly traded partnerships with a combined enterprise value of approximately $34 B.
2 Program Overview DR Phase I Goals ( ) IT Continuity and Disaster y Program Project in establishing the DR Program Goals & Objectives Strategy Plans & Procedures Vital Records Define strategy, policies and procedures Centralized DR Documentation Infrastructure and Data Establish infrastructure resiliency and DR capacity Establish data and server backup practices People Property Performance Process DR Planning Teams IT Essential Employees Area Business Owners Data Centers IT Assets End User Equipments Application RTO/RPO/MTD Infrastructure Resilience Lifecycle Mgmt y processes Support & Logistics Prepare Test Maintain Centralized DR Documentation Library IT Continuity and Disaster y Program Centralized SharePoint site and (for DR) Announcements Project status Critical Event Calendar Emergency Operation Sub-site Incident log & lessons learned Checklist and cheat sheets Essential employee list First responder team roster Phonebook & call tree Establish and maintain DR documentation Establish and conduct functional DR tests Business Mitigate Program Management Application IT DR Standard, Plans & SOPs DR Strategies Disaster declaration process IT Essential Employees Application system recovery plans Vital Records Library Infrastructure profile Critical application sytems and data profile DR testing documents DR failover documents Execute ongoing exercising and training Business engagement in continuity planning Program Planning & Disaster y Teams DR Oversight Committee DR Leads and Liaisons DR Testing Teams IT DR Liaisons and Business Owners Infrastructure project manager as PoC IT and Business testers IT Emergency Response Teams (ITERT) Coordinate emergency preparation and response activities Primary consist of IT Managers in each division IT Essential Employees (ITEE) Defined roles and responsibilities Primary consists of primes and backups in supporting critical systems People 2
3 People Contingency Planning DR Data Center & IT Assets Planning for Absence of IS Employees Data Center Profile Environment Site Protection Access control Identify core people and core skills Documentation & knowledge management Preparing for Workplace Closing Logistics for telecommuting Infrastructure External connectivity Resilliency (No SPoF) Logistics for office closure Logistics for emergency communications Planning for Emergency Response Operations DR Application Systems Pre-loaded Tier Apps Data backup for Tier 2 Apps All employees Corporate EOC External: vendor, customer, media, investors Telecommunications Planning for Failover Operations IT Essential Employees Property First ers 2 DR Definition, Scope Limitation, & Prioritization Requirement Identification & Implementation DR is defined as a service disruption resulting from the total loss of the Houston Maximum Tolerable Downtime (MTD) and Application RPO & RTO Data Center that last for longer than 5-7 days Infrastructure Resiliency DR Data Center was designed and built to meet a utilization level of 0-5% of normal production system capacity If failover is initiated, IT should plan to operate from DR Data Center for a minimum of 3 weeks before failback procedures are initiated TYPE RTO < 24 Hours (Mission Critical) Tier Application Systems 8-48 Hours Apps Implemented (Mission Critical) with High Availability -3 Days (Vital) Performance Automated Network Infrastructure 3-7 Days (Essential) RECOVERY STRATEGY Manual Support Center, NOC, Citrix, Internet and Intranet, and critical infrastructure application systems. DNS Alias update. Warm server, application log updates, SAN replication. Warm server, application log updates, SAN replication. from backup tapes or VTL. Warm server, application loaded, recovery from backup tapes or VTL. 3
4 Process Standardization & Documentations Application Inter-dependencies and Sequencing DR Asset Lifecycle Management DR Test Planning, Support & Logistics Incident Response Support & Logistics Ongoing Process Improvement and Governance Activities Steering committee review DR Application Lifecycle Management Formalize planning activities Corrective actions Opportunities for improvement beyond DR Prepare Mitigate Process DR Asset Approval and On-boarding Test Maintain DR Asset Approval and On-boarding DR Assessment DR Strategy Determine the business areas served and group of clients List components critical to support minimum levels of service Prioritize essential business processes and determine attributes for IT Management review and decide RTO/RPO and approve as new DR associated IT processes Business process and its criticality in operation value chain List of service dependencies and interfaces Commitments to other organizations (SLAs) Cost of failure over time Business agreement and executive approval on MTD and DR solutions Execute DR Solutions DR system setup and validation Identify the essential IT processes and functions associated with each business processes General description of process, frequency and manpower IT facilities and non-it facilities Vital/critical records Other systems, departments' dependencies application DR Options and cost estimate (cost/benefit analysis) Database & system replication Security & change management Documentation, Testing & Maintenance First year limited application level testing Second year roll into Annual DR Testing Prepare Mitigate 4
5 Energy Industry Value Chain E&P Crude Oil Production Midstream Commercial and Financial Applications (Pipeline, Barges, Trucks) Nature Gas / NGL Production (Natural Gas Pipelines) Crude app (Pipeline, Barges, Trucks) (Natural Gas Pipelines) Crude Oil Storage Natural Gas Processing Plants (NGL Pipelines) Crude Oil Refining Natural Gas Storage NGL Storage Refined Product Storage Natural Gas (pipelines) NGL Fractionation Midstream Crude app Crude Oil Storage Crude app Natural Gas Processing Plants (NGL Pipelines) Gas App Crude Oil Refining Midstream RP (Barges, RP pipelines) Refined Product Industries Gasoline addictives Power generation fuel EndConsumer Motor gasoline Petrochemicals Gas App RP (Barges, RP pipelines) 2 Days 3 Days 4 Days Gas App Natural Gas (pipelines) NGL App NGL Fractionation NGL App Application RTOs Based on Inter-dependencies Day NGL App RP App End-use Consumers 2 Hrs NGL Storage Refined Product Storage Industrial / Residential fuel Downstream Financial App Gas App Natural Gas Storage 5 Days 6 Days 7 Days Application Profile 7 Days - 2 Days Infrastructure Support Gas Apps Crude Apps Refined Apps NGL Apps 5
6 Functional Testing vs. Failover & Failback Functional DR Testing DR Test Testing objectives consist of: Network Validate DR applications and business processes Verify the adequacy of team collaboration procedures Server Validate that application documentation is current Document deficiencies and lessons learned Rehearse for continuous operations Timeline Test Prep 6/27 DR environment refreshed 6/28 Take Oracle DB Snapshots 6/29 7/5 Stop SQL DB and other backup jobs 7/ 7/6 Complete other infrastructure Preparation Testing 7/ 7/5 IT Application Testing at home 7/8 7/20 Commercial User Testing at home 7/20 7/22 Financial User Testing at home DR Resumption 7/26 7/28 Return to DR-Ready Mode Comm Data Apps Failover Active Directory (AD) Point to DR Internal DNS Records Point to DR Citrix Use DR Citrix URL Use Production Citrix URL Citrix Icon - File Manager Modify pointer Citrix Icon Outlook Do not use File Servers Modify pointer & shortcuts Restore - Outlook Do not use - SMTP Modify Failover RightFax Oracle DB Modify Snapshots Restore Restore SQL DB Aged database Restore Sequencing Required Backup Preparation Onsite backup only Modify frequency Application Startup Modify DNS aliases, SMTP, Fax Server, etc Script or manual process Test Lessons Learned From Past DR Tests IT Support Feedback Availability / Capacity / Demand Management Change Management Information Security Management DR Test Format Test on site vs. from home vs. outside of Enterprise network Need to improve process to track progress or validate test Documentation, Planning, and Communications Need to separate DR test and DR failover procedure documents Need to include test setup steps in the IT Test Plans Provide detailed support procedures for business testers Have face-to-face meetings with testers prior to test Improve 6
7 Process Improvement Initiatives Annual Documentation Refresh Checklist DR Documentation Ownership Record management Review and Signoff DR Plan and Policy Update Application Documents Server setup and startup procedures Production and DR server Mapping Failover checklist Vital records Review and Validate Infrastructure Support Documents DR Citrix farm Backup and replication User security management Update Testing Documents Test scope and procedure documents Functional test - Infrastructure preparation checklist; IT support and user test plan Failover test - Component failover test plan Process Improvement Projects (DR & Beyond) User access management Mobile telecommunication recovery planning DNS Alias Standardization DR Subnet Standardization & Isolation Change Management in DR Automation and Scripts Backup High Availability testing 28 Hurricane Planning and Response Pre-staged (Pre-Storm) Est. # in SA (Drive-ups) NOC 3 Est. # in Houston (On-sites) 3 Desktop 2 Network Server 2 2 DBA - ORACLE CIO s Announcements To all IS To area business owners Reminder to IT Essential Employees Update hotline and contacts Deploy pre-staged DR teams DBA - SQL PM Hurricanee Response Early dismissal Accommodations Communication tools Equipment and supplies Plans & procedures Plan for second waves No proactive system failover for weather events Disaster declaration is a business decision DR is defined as a service disruption resulting from the total loss of the Houston Data Center for longer than 5-7 days If failover is initiated, IT should plan to operate from DR Data Center for a minimum of 3 weeks before failback procedures are initiated Pre-Storm (72-96 Hours ) Preparation Alert Level I Equipment Supplies Setup Pre-Storm (36 Hours) Preparation Alert Level II Evacuation On-site Drive-up Pre-Storm (24 Hours) Preparation Alert Level III Emergency shutdown Transfer of control During-Storm Emergency Response Alert Level IV Stay safe Emergency shutdown Post-Storm Disaster y Damage Assessment Restoration Failover Mitigate 7
8 Timeline DR Phase I Failover Scenario 24 Hours Prior Day Day 2 Day 3 Day 4 Day 5 Day 6 Timeline DR Phase I Failback Scenario Day 7 Day Day Day 2 Day 3 Day 4 Day 5 Day 6 Day 7 Event Normal Ops Response and y Work-Around WorkAround Support Fail-back Infrastructure Applications Data/System Data Data/System Data Failover! Applications Infrastructure Support RPO RTO WRT RPO MTD RTO Normal Operations MTD DR Phase II Goals (200 -?) Phase II Activities New Objectives Strategic Review Capacity increase computing capacity at DR Data Center DR Data Center Upgrade Speed failover and failback quickly Application Failover Testing Isolation failover on individual app/server basis Automation automate manual tasks/processes Proof that we can failover and failback DR Scope Change Determine time taken for each application components Infrastructure and Data Data center partially down Increase to 25-50% of normal production system capacity Proof that reverse synchronization process is working properly Proof that regular procedures are working properly in test mode Application Systems failover with interface and component testing High-availability plan for each component for each app Proof that Users can use the system to conduct work at acceptable performance level Program Stay away from high traffic time to minimize user impact 8
9 Conclusions Strength Weakness. DR strategy and plans are based upon sound assessments 2. Integrated with corporate Safety and Emergency Operations. 3. Exercised on a regular basis 4. Continuous process improvement goes beyond DR 5. DR Phase II initiatives. Outdated BIAs 2. Lack of Business Continuity Oversight 3. Limited Executive Support in BCP 4. Not integrated with corporate Risk Management group 5. Lack of mass communication 6. DR Testing Environment is not isolated Opportunities Threats. Reorganization to incorporate Business. Lack of collaboration with supply chain Continuity vendors 2. MIR3 implementation 2. Lack of Service Level Agreements 3. Vendor support and consultation during Production Data Center build-out 9
TSC Business Continuity & Disaster Recovery Session
TSC Business Continuity & Disaster Recovery Session Mohamed Ashmawy Infrastructure Consulting Pursuit Hewlett-Packard Enterprise Saudi Arabia Mohamed.ashmawy@hpe.com Session Objectives and Outcomes Objectives
More informationBusiness Continuity Planning
Business Continuity Planning The Unexpected Happens Be Ready Copyright -Business Survival Partners, llc. 2011 - All Rights Reserved www.survivalpartners.biz RISK 2 Risks to National Security A secure and
More informationIntroduction to Business continuity Planning
Week - 06 Introduction to Business continuity Planning 1 Introduction The purpose of this lecture is to give an overview of what is Business Continuity Planning and provide some guidance and resources
More informationDisaster recovery strategic planning: How achievable will it be?
April 16 18, 2012 Talking Stick Resort Scottsdale, Arizona Disaster recovery strategic planning: How achievable will it be? Prudence Marasigan Ernst & Young Advisory Services, Senior Manager prudence.marasigan@ey.com
More informationDisaster Recovery and Business Continuity Planning (Mile2)
Disaster Recovery and Business Continuity Planning (Mile2) Course Number: DRBCP Length: 4 Day(s) Certification Exam This course will help you prepare for the following exams: ABCP: Associate Business Continuity
More informationMassMutual Business Continuity Disclosure Statement
MassMutual Business Continuity Disclosure Statement Overview Resiliency is a high priority at Massachusetts Mutual Life Insurance Company ( MassMutual or the Company ). To that end, significant investments
More informationContinuity of Business
White Paper Continuity of Business SAS Continuity of Business initiative reflects our commitment to our employees, to our customers, and to all of the stakeholders in our global business community to be
More informationFlorida Government Finance Officers Association. Staying Secure when Transforming to a Digital Government
Florida Government Finance Officers Association Staying Secure when Transforming to a Digital Government Agenda Plante Moran Introductions Technology Pressures and Challenges Facing Government Technology
More informationTable of Contents. Sample
TABLE OF CONTENTS... 1 CHAPTER 1 INTRODUCTION... 4 1.1 GOALS AND OBJECTIVES... 5 1.2 REQUIRED REVIEW... 5 1.3 APPLICABILITY... 5 1.4 ROLES AND RESPONSIBILITIES SENIOR MANAGEMENT AND BOARD OF DIRECTORS...
More informationTX CIO Leadership Journey Texas CIOs Bowden Hight Texas Health and Human Services Commission Tim Jennings Texas Department of Transportation Mark
TX CIO Leadership Journey Texas CIOs Bowden Hight Texas Health and Human Services Commission Tim Jennings Texas Department of Transportation Mark Stone Texas A&M University System Moderator Anh Selissen
More informationIntroduction. Overview. Every Crisis Management Team Needs a Critical Decision Checklist. Presented by Roseanne Rostron, CBCP President Raido Response
Every Crisis Management Team Needs a Critical Decision Checklist Presented by Roseanne Rostron, CBCP President Raido Response Tuesday, May 9, 2006 Introduction Roseanne Rostron, CBCP - President Raido
More informationFlorida State University
Florida State University Disaster Recovery & Business Continuity Planning Overview October 24, 2017 1 Key Readiness Questions Has your department identified the business functions and infrastructure that
More informationAppendix 3 Disaster Recovery Plan
Appendix 3 Disaster Recovery Plan DRAFT March 5, 2007 Revision XX Qwest Government Services, Inc. 4250 North Fairfax Drive Arlington, VA 22203 A3-i RFP: TQC-JTB-05-0002 March 5, 2007 REVISION HISTORY Revision
More informationLeveraging ITIL to improve Business Continuity and Availability. itsmf Conference 2009
Leveraging ITIL to improve Business Continuity and Availability Samuel Lo MBA, MSc, CDCP, PMP, CISSP, CISA Data Centre Services Manager COL Limited Strictly Business itsmf Conference 2009 25 February 2009
More information10 Reasons Why Your DR Plan Won t Work
10 Reasons Why Your DR Plan Won t Work Jim Damoulakis CTO, GlassHouse Technologies, Inc. Sept. 29, 2005 DR Vision Imagine Prepared to handle multiple categories of disaster Clearly documented policies
More informationBusiness Continuity Management Standards A Side-by-Side Comparison
Business Continuity Standards A Side-by-Side Comparison By Brian Zawada (CBCP) & Jared Schwartz (CBCP) Whether your organization has begun a grassroots initiative to develop a business continuity plan
More informationCertified Information Systems Auditor (CISA)
Certified Information Systems Auditor (CISA) 1. Domain 1 The Process of Auditing Information Systems Provide audit services in accordance with IT audit standards to assist the organization in protecting
More informationAddressing Vulnerabilities By Integrating Your Incident Response Plans. Brian Coates Enaxis Consulting
Addressing Vulnerabilities By Integrating Your Incident Response Plans Brian Coates Enaxis Consulting Contents Enaxis Introduction Presenter Bio: Brian Coates Incident Response / Incident Management in
More informationBUSINESS CONTINUITY MANAGEMENT PROGRAM OVERVIEW
BUSINESS CONTINUITY MANAGEMENT PROGRAM OVERVIEW EXECUTIVE SUMMARY CenturyLink is committed to ensuring business resiliency and survivability during an incident or business disruption. Our Corporate Business
More informationBUSINESS CONTINUITY PLAN Document Number: 100-P-01 v1.4
BUSINESS CONTINUITY PLAN Document Number: 100-P-01 v1.4 2016 DR Committee 1 Table of Contents REVISION HISTORY... 3 PURPOSE... 3 POLICY... 3 DR COMMITTEE... 3 POLICY MANAGEMENT... 3 EMPLOYEE TRAINING AND
More informationVMware BCDR Accelerator Service
AT A GLANCE The rapidly deploys a business continuity and disaster recovery (BCDR) solution with a limited, pre-defined scope in a non-production environment. The goal of this service is to prove the solution
More informationTechnical Recovery Planning
Technical Recovery Planning Statistics NEDRIX 2006 Annual Conference Business Continuity 52 offices in 26 countries 258 Business Continuity Plans 260 Business Continuity Manager (BCM) / Alt BCM / Team
More informationUsing ITIL to Measure Your BCP
Using ITIL to Measure Your BCP 1 Agenda ITIL v3 Overview Why Use ITIL ITIL Continual Improvement Process Critical Success Factors and Key Performance Indicators Creating Metrics Scoring System Sample BCP
More informationREPORT 2015/149 INTERNAL AUDIT DIVISION
INTERNAL AUDIT DIVISION REPORT 2015/149 Audit of the information and communications technology operations in the Investment Management Division of the United Nations Joint Staff Pension Fund Overall results
More information3.4 DISASTER RECOVERY (L , M.3.9, comp_req_id 806)
3.4 DISASTER RECOVERY (L.34.2.3.4, M.3.9, comp_req_id 806) Three key objectives that GSA has as part of the award of the Networx contract are to ensure service continuity, high-quality service, and operations
More informationNORTH CAROLINA NC MRITE. Nominating Category: Enterprise IT Management Initiatives
NORTH CAROLINA MANAGING RISK IN THE INFORMATION TECHNOLOGY ENTERPRISE NC MRITE Nominating Category: Nominator: Ann V. Garrett Chief Security and Risk Officer State of North Carolina Office of Information
More informationKeeping it Simple Driving BCM Program Adoption Through Simplification
Keeping it Simple Driving BCM Program Adoption Through Simplification This case study will discuss how Time Warner Cable has redesigned the BCM program to focus on simplicity in planning and preparation
More information"Charting the Course... Certified Information Systems Auditor (CISA) Course Summary
Course Summary Description In this course, you will perform evaluations of organizational policies, procedures, and processes to ensure that an organization's information systems align with overall business
More informationPrinciples for BCM requirements for the Dutch financial sector and its providers.
Principles for BCM requirements for the Dutch financial sector and its providers. Platform Business Continuity Vitale Infrastructuur Financiële sector (BC VIF) Werkgroep BCM requirements 21 September 2011
More informationBuilding a BC/DR Control Library and Regulatory Response Program
Building a BC/DR Control Library and Regulatory Response Program David Garland, Senior Director, Disaster Recovery & Regulatory Compliance, Business Continuity Management CME Group Regulatory Compliance
More information112 th Annual Conference May 6-9, 2018 St. Louis, Missouri
8:30 10:30 May 6, 2018 Room 240 Complex 112 th Annual Conference May 6-9, 2018 St. Louis, Missouri Moderator/Speakers: Kevin Wachtel Finance Director/Treasurer, Villa Park, IL Alex Brown Senior Manager,
More informationDisaster Recovery Planning: Is Your Plan in Place? Presented by: Steve Shofner, CISA, CGEIT
Disaster Recovery Planning: Is Your Plan in Place? Presented by: Steve Shofner, CISA, CGEIT 1 The material appearing in this presentation is for informational purposes only and is not legal or accounting
More informationTransform Availability
Transform Availability EMC Continuous Availability Advisory Services Presenter: 1 Agenda Introduction Why Continuous Availability? Customer Challenges EMC s Approach Service Description Delivery Timeline
More informationDisaster Recovery and Mitigation: Is your business prepared when disaster hits?
1 Disaster Recovery and Mitigation: Is your business prepared when disaster hits? 2 Our speaker today: Catherine Roy, Director of PMO at Hosting 15 years Project Management experience At HOSTING since
More informationThe Common Controls Framework BY ADOBE
The Controls Framework BY ADOBE The following table contains the baseline security subset of control activities (derived from the Controls Framework by Adobe) that apply to Adobe s enterprise offerings.
More informationContinuity of Operations During Disasters: Electronic Systems and Medical Records
Idaho Health Care Association Continuity of Operations During Disasters: Electronic Systems and Medical Records Philip Niemer, MBA, MS, HEM Director Operational Continuity & Emergency Management Children
More informationBusiness Continuity and Disaster Recovery
Business Continuity and Disaster Recovery Index Section Title 1. Executive Summary 2. Policy Statement 3. Strategy 4. Governance 5. Key Documentation 6. Testing 1 Executive Summary Business Continuity
More informationInformation Technology General Control Review
Information Technology General Control Review David L. Shissler, Senior IT Auditor, CPA, CISA, CISSP Office of Internal Audit and Risk Assessment September 15, 2016 Background Presenter Senior IT Auditor
More informationBusiness continuity management and cyber resiliency
Baker Tilly refers to Baker Tilly Virchow Krause, LLP, an independently owned and managed member of Baker Tilly International. Business continuity management and cyber resiliency Introductions Eric Wunderlich,
More informationTOP REASONS TO CHOOSE DELL EMC OVER VEEAM
HANDOUT TOP REASONS TO CHOOSE DELL EMC OVER VEEAM 10 This handout overviews the top ten reasons why customers choose Data Protection from Dell EMC over Veeam. Dell EMC has the most comprehensive data protection
More informationSAMPLE REPORT. Business Continuity Gap Analysis Report. Prepared for XYZ Business by CSC Business Continuity Services Date: xx/xx/xxxx
SAMPLE REPORT Business Continuity Gap Analysis Report Prepared for XYZ Business by CSC Business Continuity Services Date: xx/xx/xxxx COMMERCIAL-IN-CONFIDENCE PAGE 1 OF 11 Contact Details CSC Contacts CSC
More informationISO STANDARD IMPLEMENTATION AND TECHNOLOGY CONSOLIDATION
ISO STANDARD IMPLEMENTATION AND TECHNOLOGY CONSOLIDATION Cathy Bates Senior Consultant, Vantage Technology Consulting Group January 30, 2018 Campus Orientation Initiative and Project Orientation Project
More informationINFORMATION SECURITY- DISASTER RECOVERY
Information Technology Services Administrative Regulation ITS-AR-1505 INFORMATION SECURITY- DISASTER RECOVERY 1.0 Purpose and Scope The objective of this Administrative Regulation is to outline the strategy
More informationPrepare your Emergency respons, continuity plan, recovery plan
Prepare your Emergency respons, continuity plan, recovery plan Panel Discussion with PortAventura,Europa Park, Disneyland Paris,Liseberg,the Safety Committee members with Q & A from attendees Septembre
More informationHow to Derive Value from Business Continuity Planning
How to Derive Value from Continuity Planning Presented by Randall J. Till, Principal Till Continuity Group Spring World 2011 Disaster Recovery Journal March 28, 2011 1 BCM Challenges BCM funding is limited
More informationTUFTS HEALTH PLAN CORPORATE CONTINUITY STRATEGY
JUNE 2017 TUFTS HEALTH PLAN CORPORATE CONTINUITY STRATEGY OVERVIEW The intent of this document is to provide external customers and auditors with a high-level overview of the Tufts Health Plan Corporate
More informationA Survival Guide to Continuity of Operations. David B. Little Senior Principal Product Specialist
A Survival Guide to Continuity of Operations David B. Little Senior Principal Product Specialist Customer Perspective: Recovery Time & Objective Asynchronous Replication Synchronous Replication WAN Clustering
More informationA Practical Guide to Avoiding Disasters in Mission-Critical Facilities. What is a Disaster? Associated Business Issues.
A Practical Guide to Avoiding Disasters in Mission-Critical Facilities Todd Bermont What is a Disaster? An event that can unexpectedly impact the continuity of your business Anything that injures or has
More informationAudit & Advisory Services. IT Disaster Recovery Audit 2015 Report Date January 28, 2015
Audit & Advisory Services IT Disaster Recovery Audit 2015 Report Date January 28, 2015 Audit & Advisory Services Mission and Function The JCCC Audit & Advisory Services department provides an independent
More informationAn Operational Cyber Security Perspective on Emerging Challenges. Michael Misumi CIO Johns Hopkins University Applied Physics Lab (JHU/APL)
An Operational Cyber Security Perspective on Emerging Challenges Michael Misumi CIO Johns Hopkins University Applied Physics Lab (JHU/APL) Johns Hopkins University Applied Physics Lab (JHU/APL) University
More informationNHS Gloucestershire Clinical Commissioning Group. Business Continuity Strategy
NHS Gloucestershire Clinical Commissioning Group 1 Document Control Title of Document Gloucestershire CCG Author A Ewens (Emergency Planning and Business Continuity Officer) Review Date February 2017 Classification
More informationDISASTER RECOVERY PRIMER
DISASTER RECOVERY PRIMER 1 Site Faliure Occurs Power Faliure / Virus Outbreak / ISP / Ransomware / Multiple Servers Sample Disaster Recovery Process Site Faliure Data Centre 1: Primary Data Centre Data
More informationNew England Data Camp v2.0 It is all about the data! Caregroup Healthcare System. Ayad Shammout Lead Technical DBA
New England Data Camp v2.0 It is all about the data! Caregroup Healthcare System Ayad Shammout Lead Technical DBA ashammou@caregroup.harvard.edu About Caregroup SQL Server Database Mirroring Selected SQL
More informationBusiness Continuity - An Inside Perspective
Business Continuity - An Inside Perspective Tom McIlvaine Business Continuity Manager May 24, 2011 Agenda Where It All Begins Private Sector & Government Applicability Business Continuity Planning A Corporate
More informationData Center Operations Guide
Data Center Operations Guide SM When you utilize Dude Solutions Software as a Service (SaaS) applications, your data is hosted in an independently audited data center certified to meet the highest standards
More informationIntegration of Business Continuity, Emergency Preparedness, and Emergency Response
Integration of Business Continuity, Emergency Preparedness, and Emergency Response Continuity Insights Conference 2014 Julia Halsne Manager of Business Continuity East Bay Municipal Utility District Contents
More informationBundling Arrows: Making a Business Case for Adopting an Incident Command System (ICS) 2012 The Flynt Group, Inc.; All Rights Reserved. FlyntGroup.
Bundling Arrows: Making a Business Case for Adopting an Incident Command System (ICS) 2012 The Flynt Group, Inc.; All Rights Reserved FlyntGroup.com Flynt Group White Paper Bundling Arrows: Making a Business
More informationConvergence of BCM and Information Security at Direct Energy
Convergence of BCM and Information Security at Direct Energy Karen Kemp Direct Energy Session ID: GRC-403 Session Classification: Advanced About Direct Energy Direct Energy was acquired by Centrica Plc
More informationSession 5: Business Continuity, with Business Impact Analysis
Session 5: Business Continuity, with Business Impact Analysis By: Tuncay Efendioglu, Acting Director Internal Oversight Division, WIPO Pierre-François Gadpaille, Audit Specialist (Information Systems),
More informationDR Planning. Presented by. Matt Stolk Associate Director Northwest Regional Data Center Florida State University
DR Planning Presented by Matt Stolk Associate Director Northwest Regional Data Center Florida State University Why are we here? Over the last couple of years, business continuity has become more of a priority
More informationIT CONTINUITY, BACKUP AND RECOVERY POLICY
IT CONTINUITY, BACKUP AND RECOVERY POLICY IT CONTINUITY, BACKUP AND RECOVERY POLICY Effective Date May 20, 2016 Cross- Reference 1. Emergency Response and Policy Holder Director, Information Business Resumption
More informationIPMA State of Washington. Disaster Recovery in. State and Local. Governments
IPMA State of Washington Disaster Recovery in State and Local Governments Disaster by the Numbers Over 70% of agencies had some sort of data loss incident in 2012 Under 5% report that they were able to
More informationHazard Management Cayman Islands
Hazard Management Cayman Islands Strategic Plan 2012 2016 Executive Summary HMCI strategic plan outlines the agency s outlook in the next five years and illustrates the main strategies as goals that will
More informationModule 4 STORAGE NETWORK BACKUP & RECOVERY
Module 4 STORAGE NETWORK BACKUP & RECOVERY BC Terminology, BC Planning Lifecycle General Conditions for Backup, Recovery Considerations Network Backup, Services Performance Bottlenecks of Network Backup,
More informationPublic Safety Canada. Audit of the Business Continuity Planning Program
Public Safety Canada Audit of the Business Continuity Planning Program October 2016 Her Majesty the Queen in Right of Canada, 2016 Cat: PS4-208/2016E-PDF ISBN: 978-0-660-06766-7 This material may be freely
More informationWhy the Cloud is Changing the Face of DR
Why the Cloud is Changing the Face of DR Janson Hoambrecker Director of World Wide Cloud Incubation Services EVault, Inc., a Seagate Company 2012 EVault, Inc. All Rights 1 Upgrading DR Capability Seen
More informationPrinciples of Protection: Cybersecurity Data Protection. 11/01/2017 Julia Breaux William Sellers
Principles of Protection: Cybersecurity Data Protection 11/01/2017 Julia Breaux William Sellers Introductions Julia Breaux Internal Controls and Compliance Manager (225) 214-3898 Julia.Breaux@eatel.com
More informationBUSINESS CONTINUITY. Topics covered in this checklist include: General Planning
BUSINESS CONTINUITY Natural and manmade disasters are happening with alarming regularity. If your organization doesn t have a great business continuity plan the repercussions will range from guaranteed
More informationCompTIA Advanced Security Practitioner (CASP) (Exam CAS-001)
CompTIA Advanced Security Practitioner (CASP) (Exam CAS-001) Course Outline Course Introduction Course Introduction Lesson 01 - The Enterprise Security Architecture Topic A: The Basics of Enterprise Security
More informationINFORMATION TECHNOLOGY ( IT ) GOVERNANCE FRAMEWORK
INFORMATION TECHNOLOGY ( IT ) GOVERNANCE FRAMEWORK 1. INTRODUCTION The Board of Directors of the Bidvest Group Limited ( the Company ) acknowledges the need for an IT Governance Framework as recommended
More informationNovember 14, Emergency Management and Hurricane Irma. Florida Human Resources People and Strategy (FLHRPS)
November 14, 2017 Emergency Management and Hurricane Irma Florida Human Resources People and Strategy (FLHRPS) 1 Agenda Hurricane Irma recap Dianne Merrill Emergency Management Process Susan Mueller Lessons
More informationSolutions Technology, Inc. (STI) Corporate Capability Brief
Solutions Technology, Inc. (STI) Corporate Capability Brief STI CORPORATE OVERVIEW Located in the metropolitan area of Washington, District of Columbia (D.C.), Solutions Technology Inc. (STI), women owned
More informationIT MANAGER PERMANENT SALARY SCALE: P07 (R ) Ref:AgriS042/2019 Information Technology Manager. Reporting to. Information Technology (IT)
DESIGNATION Reporting to Division Office Location IT MANAGER PERMANENT SALARY SCALE: P07 (R806 593.00) Ref:AgriS042/2019 Information Technology Manager CEO Information Technology (IT) Head office JOB PURPOSE
More informationAUDIT UNITED NATIONS VOLUNTEERS PROGRAMME INFORMATION AND COMMUNICATION TECHNOLOGY. Report No Issue Date: 8 January 2014
UNITED NATIONS DEVELOPMENT PROGRAMME AUDIT OF UNITED NATIONS VOLUNTEERS PROGRAMME INFORMATION AND COMMUNICATION TECHNOLOGY Report No. 1173 Issue Date: 8 January 2014 Table of Contents Executive Summary
More informationL18: Integrate Control Disciplines to Increase Control and Save Money
L18: Integrate Control Disciplines to Increase Control and Save Money Kathleen Lucey, FBCI Montague Risk kalucey@montaguetm.com tel: 1.516.676.9234 Connections Information Security (computer security,
More informationSRM Evaluation Guide First Published On: Last Updated On:
First Published On: 12-24-2016 Last Updated On: 04-17-2018 1 Table of Contents 1. Introduction 1.1.Overview 1.2.Terminology 1.3.About This Evaluation Guide 2. Requirements 2.1.Overview 3. Evaluation Workflow
More informationBusiness Resiliency in the Cloud: Reality or Hype?
Business Resiliency in the Cloud: Reality or Hype? Karen Jaworski Senior Director, Product Marketing EVault, a Seagate Company 8/10/2012 2012 EVault, Inc. All Rights Reserved 1 Who is EVault? Cloud-Connected
More informationNW NATURAL CYBER SECURITY 2016.JUNE.16
NW NATURAL CYBER SECURITY 2016.JUNE.16 ADOPTED CYBER SECURITY FRAMEWORKS CYBER SECURITY TESTING SCADA TRANSPORT SECURITY AID AGREEMENTS CONCLUSION QUESTIONS ADOPTED CYBER SECURITY FRAMEWORKS THE FOLLOWING
More informationRejuvenating BCM - Infrastructure. Business Continuity Awareness Week March 2009
Rejuvenating BCM - Infrastructure Business Continuity Awareness Week 23 27 March 2009 Brigitte Theuma MBCI, CBCMMA, CBCMP, CBCITP, MIAEM 23 March 2009 Total of 5 pages Table of Contents I. ICT Service
More informationBusiness Continuity Plan Executive Overview
Business Continuity Plan Executive Overview In terms of business continuity and disaster recovery planning, Harland Clarke s mission is to ensure the availability of critical business functions and Information
More informationA guide for assembling your Jira Data Center team
A guide for assembling your Jira Data Center team Contents 01 Getting started 02 Helpful roles for your Jira Data Center team 03 Helpful expertise for your Jira Data Center team 04 Pro tips & best practices
More informationRECOVERY & BUSINESS CONTINUITY SERVICES. Protect your data. Recover your environment. Manage your recovery.
RECOVERY & BUSINESS CONTINUITY SERVICES Protect your data. Recover your environment. Manage your recovery. While it s true that businesses rely on IT services more than ever, it s also true that the environments
More informationCisco Director Class SAN Planning and Design Service
Cisco Director Class SAN Planning and Design Service Rapidly Plan and Deploy a Cisco Director Class MDS Solution for More Efficient Storage Networking Service Overview Cisco s intelligent storage networking
More informationDell helps you simplify IT
Dell helps you simplify IT Workshops the first step. Reduce desktop and data center complexity. Improve productivity. Innovate. Dell IT Consulting Services New Edition 2011 Introduction Are you spending
More informationHRSD Position Description: UNIX Systems Administrator
HRSD Position Description: UNIX Systems Administrator Section I. Section II. Section III. Position Reference Information a. Department Finance and Administration b. Division Information Technology c. Position
More informationSQL Server Virtualization 201
Virtualization 201 Management and Risk Mitigation PASS Virtualization Virtual Chapter 2014.05.15 About David Klee @kleegeek davidklee.net gplus.to/kleegeek linked.com/a/davidaklee Specialties / Focus Areas
More informationUniversity of Pittsburgh Security Assessment Questionnaire (v1.7)
Technology Help Desk 412 624-HELP [4357] technology.pitt.edu University of Pittsburgh Security Assessment Questionnaire (v1.7) Directions and Instructions for completing this assessment The answers provided
More informationAny observations not included in this report were discussed with your staff at the informal exit conference and may be subject to follow-up.
Larry Mandel Vice Chancellor and Chief Audit Officer Audit and Advisory Services 401 Golden Shore, 4th Floor Long Beach, CA 90802-4210 562-951-4430 562-951-4955 (Fax) lmandel@calstate.edu June 5, 2018
More informationMember of the County or municipal emergency management organization
EMERGENCY OPERATIONS PLAN SUUPPORT ANNEX B PRIVATE-SECTOR COORDINATION Coordinating Agency: Cooperating Agencies: Chatham Emergency Management Agency All Introduction Purpose This annex describes the policies,
More informationSTRATEGIC PLAN. USF Emergency Management
2016-2020 STRATEGIC PLAN USF Emergency Management This page intentionally left blank. Organization Overview The Department of Emergency Management (EM) is a USF System-wide function based out of the Tampa
More informationWHITE PAPER OCTOBER 2017 VMWARE ENTERPRISE RESILIENCY. Integrating Resiliency into Our Culture and DNA
WHITE PAPER OCTOBER 2017 VMWARE ENTERPRISE RESILIENCY Integrating Resiliency into Our Culture and DNA Table of Contents Executive Summary.... 3 Background.... 4 Charter.................................................................4
More informationWeb Hosting: Mason Home Page Server (Jiju) Service Level Agreement 2012
Web Hosting: Mason Home Page Server (Jiju) Service Level Agreement 2012 Table of Contents 1 General Overview... 2 2 Service Description... 2 2.1 Service Scope... 2 2.1.1 Eligibility Requirements... 2 2.1.2
More informationBC/DR Strategy with VMware
BC/DR Strategy with VMware VMware vforum, 2014 Andrea Teobaldi Systems Engineer @teob77 2014 VMware Inc. All rights reserved. What s on the agenda? Defining the problem Definitions VMware technologies
More informationICT Global Townhall. 30 March 2016 Meeting
ICT Global Townhall 30 March 2016 Meeting Agenda Update on 70 th General Assembly Session ICT Strategy: Update on Implementation ICT Harmonisation - Governance, Delegation of Authority and Consolidation
More informationImplementing a Global Business
GLOBAL OPERATIONS Implementing a Global Business Continuity Management Program Disaster Recovery Journal Spring World 2010 Conference Pfizer Inc. Managing Business Continuity on a Global Scale This presentation
More informationRetro-Commissioning of Data Centers
Retro-Commissioning of Data Centers Agenda Unique traits of Data Centers (DCs) Benefits of Retro-Cx DCs Suitable candidates for Retro-Cx Phases of Retro-Cx Additional considerations for DCs 2 Unique Traits
More informationBusiness Continuity Planning Keeping Pace with New Technology
Business Continuity Planning Keeping Pace with New Technology Old issues, new threats Force Majeure Increasing severe weather incidents, terrorist attacks Legacy modernization Cutover issues, system crashes,
More informationarcserve r16.5 Hybrid data protection
arcserve r16.5 Hybrid data protection Whether you re protecting the data center, remote offices or desktop resources, you need a solution that helps you meet today s demanding service-level agreements
More informationPOSITION DESCRIPTION
POSITION DESCRIPTION Engagement Manager Unit/Branch, Directorate: Location: Outreach & Engagement, Information Assurance and Cyber Security Directorate Auckland Salary range: H $77,711 - $116,567 Purpose
More informationSecurity+ Guide to Network Security Fundamentals, Third Edition. Chapter 13 Business Continuity
Security+ Guide to Network Security Fundamentals, Third Edition Chapter 13 Business Continuity Objectives Define business continuity Describe the components of redundancy planning List disaster recovery
More information