Disaster Recovery and Business Continuity

Similar documents
Five Key Considerations for Selecting Cloud Recovery Services

Wong Tze Chuan General Manager. Gadget Wearable Tech (M) Sdn Bhd

IaaS Buyer s Checklist.

Managed Services Rely on us to manage your business services

BUSINESS CONTINUITY: THE PROFIT SCENARIO

AUTOTASK ENDPOINT BACKUP (AEB) SECURITY ARCHITECTURE GUIDE

Projectplace: A Secure Project Collaboration Solution

A Survival Guide to Continuity of Operations. David B. Little Senior Principal Product Specialist

Real-time Protection for Microsoft Hyper-V

Module 4 STORAGE NETWORK BACKUP & RECOVERY

What you need to know about cloud backup: your guide to cost, security, and flexibility. 8 common questions answered

White Paper. How to select a cloud disaster recovery method that meets your requirements.

SQL Server Availability Groups

WHITE PAPER. Header Title. Side Bar Copy. Header Title 5 Reasons to Consider Disaster Recovery as a Service for IBM i WHITEPAPER

itg CloudBase is a suite of fully managed Cloud Services from Backup to Hosting ready to support your business onwards and upwards into the future.

WHY BUILDING SECURITY SYSTEMS NEED CONTINUOUS AVAILABILITY

Security+ Guide to Network Security Fundamentals, Third Edition. Chapter 13 Business Continuity

After the Attack. Business Continuity. Planning and Testing Steps. Disaster Recovery. Business Impact Analysis (BIA) Succession Planning

Step into the future. HP Storage Summit Converged storage for the next era of IT

CANVAS DISASTER RECOVERY PLAN AND PROCEDURES

Disaster Happens; Don t Be Held

NWPPA2016. Disaster Recovery NWPPA Reno, NV Copyright 2016, IVOXY Consulting, LLC

ZYNSTRA TECHNICAL BRIEFING NOTE

Are you out on the ledge with your DR? 2013 Progress Software Corporation. All rights reserved.

Three Steps Toward Zero Downtime. Guide. Solution Guide Server.

ECE Engineering Robust Server Software. Spring 2018

There are also a range of security and redundancy systems designed to improve the speed, reliability, stability and security of the simpro Cloud.

Disaster Recovery Is A Business Strategy

Business Continuity & Disaster Recovery

Why Continuity Matters

1 Data Center Requirements

INTRODUCING VERITAS BACKUP EXEC SUITE

From Single File Recovery to Full Restore: Choosing the Right Backup and Recovery Solution for Your Cloud Data

Why the Threat of Downtime Should Be Keeping You Up at Night

The Future of Business Continuity & Resiliency

Virtual protection gets real

vsan Disaster Recovery November 19, 2017

High Availability- Disaster Recovery 101

Business Resiliency in the Cloud: Reality or Hype?

Disaster Recovery Webinar August 11, 2015

High Availability- Disaster Recovery 101

We Make IT Simple. IT Support and Security Specialists.

Certified Information Systems Auditor (CISA)

CLOUD DISASTER RECOVERY. A Panel Discussion

Downtime Prevention Buyer s Guide. 6 QUESTIONS to help you choose the right availability protection for your applications

Business Continuity and Disaster Recovery

Using Computer Associates BrightStor ARCserve Backup with Microsoft Data Protection Manager

IT your way - Hybrid IT FAQs

Specifications for WebDocs On-Demand

PowerVault MD3 Storage Array Enterprise % Availability

FIS Global Partners with Asigra To Provide Financial Services Clients with Enhanced Secure Data Protection that Meets Compliance Mandates

WHITE PAPER Cloud FastPath: A Highly Secure Data Transfer Solution

Aljex Software, Inc. Business Continuity & Disaster Recovery Plan. Last Updated: 1/30/2017.

Simplifying Downtime Prevention for Industrial Plants. A Guide to the Five Most Common Deployment Approaches

A Practical Guide to Cost-Effective Disaster Recovery Planning

Protecting Microsoft Hyper-V 3.0 Environments with Arcserve

New England Data Camp v2.0 It is all about the data! Caregroup Healthcare System. Ayad Shammout Lead Technical DBA

Ensuring business continuity with comprehensive and cost-effective disaster recovery service.

2788 : Designing High Availability Database Solutions Using Microsoft SQL Server 2005

Disaster Recovery Solutions for Oracle Database Standard Edition RAC. A Dbvisit White Paper By Anton Els

PROTECT YOUR DATA, SAFEGUARD YOUR BUSINESS

A CommVault White Paper: Business Continuity: Architecture Design Guide

Hybrid Cloud for Business Communications

Disaster Recovery Options

White Paper The simpro Cloud

The Nuances of Backup and Recovery Solutions

Dell DR4000 Replication Overview

HYBRID CLOUD BACKUP & DISASTER RECOVERY

Kroll Ontrack VMware Forum. Survey and Report

How Managed Service Providers Can Meet Market Growth with Maximum Uptime

Disaster Recovery as a Service

Balancing RTO, RPO, and budget. Table of Contents. White Paper Seven steps to disaster recovery nirvana for wholesale distributors

Chapter 1. Storage Concepts. CommVault Concepts & Design Strategies:

UPS system failure. Cyber crime (DDoS ) Accidential/human error. Water, heat or CRAC failure. W eather related. Generator failure

Microsoft SQL Server

For Australia January 2018

Rejuvenating BCM - Infrastructure. Business Continuity Awareness Week March 2009

WEBSCALE CONVERGED APPLICATION DELIVERY PLATFORM

Asset Bank - Shared Hosting. Service Description

IT Disaster Recovery Planning: A Guide to Getting It Done

WHEN DOWNTIME TAKES A BITE OUT OF YOUR BUDGET

The Key to Disaster Recovery

SECURITY PRACTICES OVERVIEW

Carbonite Availability. Technical overview

ASSURING BUSINESS CONTINUITY THROUGH CONTROLLED DATA CENTER

Introduction to Business continuity Planning

How to Protect SAP HANA Applications with the Data Protection Suite

AGENDA ITEM: 3.4 DATE OF MEETING: 3 MAY 2018 INFORMATION MANAGEMENT, TECHNOLOGY & GOVERNANCE COMMITTEE

IBM SmartCloud Resilience offers cloud-based services to support a more rapid, reliable and cost-effective enterprise-wide resiliency.

ENDNOTE SECURITY OVERVIEW INCLUDING ENDNOTE DESKTOP AND ONLINE

IPMA State of Washington. Disaster Recovery in. State and Local. Governments

White paper. The three levels of high availability Balancing priorities and cost

A guide for assembling your Jira Data Center team

Infocomm Professional Development Forum 2011

NEC Express5800 R320f Fault Tolerant Servers & NEC ExpressCluster Software

Custom hosting solutions orchastrated for your needs.

Backup vs. Business Continuity

Transform Availability

For USA & Europe January 2018

How to license Oracle Database programs in DR environments

Transcription:

Disaster Recovery and Business A Rackspace White Paper Spring 2010 Summary The purpose of this guide is to cut through the jargon around Business and Disaster Recovery, explain the differences and help buyers find a solution that fits their needs. For more help making your choice, please contact Rackspace the home of Fanatical Support

Introduction This document is intended to explain the differences between Disaster Recovery and Business, introduce the concepts behind each and to enable the reader to make an informed decision on how best to prepare a plan to protect their business in the case of a disaster. Disaster Recovery and Business are terms that are often incorrectly thought to mean the same thing. However, they are both very different and if defined and planned for appropriately, are essential to any business. What does Disaster Recovery and Business mean? Business Business (BC) ensures the continuity of business critical functions in the event of a major unplanned service failure or disaster. This includes both technical and non-technical components, such as planning for power outages in offices or data centres, critical events affecting key staff, hardware failures, and compromise of data and virus attacks. All businesses should have a Business plan in place to protect themselves, their data and their customers. These plans are essential in any business, and full control and ownership of the plan should be retained internally at all times. Disaster Recovery Disaster Recovery (DR) is a component of a larger Business Strategy, and a good DR plan outlines how an organisation prevents and deals specifically with IT downtime created by local and regional failures and disasters. Planning for DR can start with simple measures such as utilising multiple disk drives in servers (e.g. RAID, or Redundant Array of Independent Disks, configurations), installing anti-virus software, and extend to backup plans, file replication, building redundancy into IT solutions, DNS failover and geographic load balancing and beyond.

Disaster Prevention Planning for Disaster Prevention should be a large part of a successful DR plan. If using a hosting company, their infrastructure should be built in such a way that the potential for disasters occurring at a data centre level is minimal. When planning to build any IT infrastructure, the configuration level should be fully explored to ensure that all necessary steps are taken to build redundancy and limit the possibility of disasters occurring. For example, ensuring all servers and network devices have multiple power supplies in case of failure, clustering servers to protect valuable database or email data, and encrypting data to prevent theft or misuse of data. The next step in planning an IT infrastructure is Disaster Recovery once the solution has been designed to be redundant to prevent disasters, how should it be built to enable swift recovery from a disaster? If high uptime is a vital requirement, then redundant infrastructure is essential. For most organisations, investing in a high availability infrastructure is a natural first step to ensure the solution against failure of any single component. This means that when a failure occurs, continuous service is maintained is maintained from the alternative infrastructure, enabling the original problem to be resolved with minimum user impact. For organisations looking for the ultimate peace of mind, a geographically redundant (i.e. twin data centre) solution may be justified. Retaining a mirrored solution in a geographically diverse data centre will enable swift recovery from a disaster with minimal downtime and data loss. However, a fully mirrored solution is an expensive option, so smaller businesses may seek to set up a smaller second site solution to maintain a minimum presence in case of disaster at the primary data centre. Why do organisations use Business (BC) and Disaster Recovery (DR) Planning? There are many reasons that organisations use Business Planning and prepare a Disaster Recovery plan. At the most basic level, the continuing survival of the business and service of its customers is a large motivator, but industry regulation, board-level direction and compliance requirements often dictate a necessity for Business and Disaster Recovery Planning.

Planning for Disaster Prevention as part of a DR plan can help organisations to achieve various compliance standards, including PCI DSS (Payment Card Industry Data Security Standard), ISO27001 (International Organisation for Standardisation) and SAS-70 (Statement on Auditing Standards). PCI DSS is a set of comprehensive requirements for enhancing payment account data security; ISO27001 is an Information Security Management System standard, and SAS-70 is an international auditing standard, developed by the American Institute of Certified Public Accountants. All of these contain controls which should form part of a DR plan regardless of any compliance requirements. How can hosting companies add value? Most hosting companies will have built their hosting infrastructure around best practices and have attained various certifications (such as SAS-70, PCI-DSS and ISO27001) which show that they adhere to certain standards in security and processes. While these will give confidence and comfort to their customers, they also mean that in the case of a disaster the Hosting Provider should have recovery processes in place that have been audited and approved by external companies. Some hosting companies, including Rackspace, are able to offer data replication between data centres. This simplifies the setup of geographically redundant configurations and can help to reduce the time to recovery. In addition to this, there are four key factors that contribute to the overall availability of a managed hosted solution: 1. The quality of the hardware and software being offered 2. The SLA being offered by the hosting provider 3. The skills, experience and availability of the hosting providers support staff 4. The resilience of the solution architecture design These factors can be used in planning your DR and BC plans for example, knowing that a hosting provider such as Rackspace offers a one-hour hardware replacement SLA in the case of failed hardware will help to understand how to define Recovery Point and Time Objectives. What are Recovery Point Objectives and Recovery Time Objectives? These two terms are very important when planning for Disaster Recovery. The Recovery Point Objective (RPO) is the point in time prior to an outage in which systems and data must be restored to, or the acceptable amount of data loss measured in time. This essentially asks the question how much data are you willing to lose during a disaster? In the case of an e-commerce site constantly taking orders, the RPO should be very low minutes as opposed to hours, to prevent loss of customer orders and details. However in the case of a relatively static site, such as an online brochure, this could be several hours or even days. The Recovery Time Objective is the length of time before full recovery is completed in the case of a disaster. E.g. how long can your site be inaccessible? If the site generates company revenue, then RTO should be low the longer the site is inaccessible, the greater the loss made.

What are the main areas to think about when planning for DR or BC? When planning for Disaster Recovery and Business, each area of business needs to be focussed on individually. Questions to ask include: What data and applications are critical to your business? Where are these hosted, and can they be recovered elsewhere in case of emergency? What level of application uptime is acceptable to your business? How can you achieve the required level of uptime? How critical is your data/application to business functions/processes? What are your RTO/RPO requirements? What are your DNS failover requirements? Office and data centre location if a catastrophic event occurs making either of these inaccessible, how to recover? Can staff work from home? Is there an alternate office or data centre that can be utilised? Office utilities power, water, Internet access, etc. In the case of an outage of any of these, are alternatives available at the office? If not, what measures are in place to ensure staff can still work? If an alternate location is available are staff and/or customers able to travel to and access it easily? Staff sickness in the case of a mass sickness amongst staff, what processes are in place for bringing in temporary staff or handing off responsibilities to other staff members? Conclusion Business Planning Business Planning is something that every business should commit to the complexity of the plan will depend on the complexity of the company and the uptime requirements of the organisation. This plan should take a very wide view of the entire business, all of its functions, dependencies and supplies. Disaster Recovery Planning Disaster Recovery Planning should look specifically at the Information Technology part of a business, and how it can be recovered quickly and with minimal data loss in the case of a disaster. Customer and uptime requirements will often dictate a large part of this plan. Planning for both Business and Disaster Recovery should always be an iterative process, and be regularly reviewed whenever any part of the organisation or systems changes. Additionally, all plans should be tested as regularly as possible to ensure that they are effective. An out of date or untested plan can be more dangerous than no plan at all. Working with Hosting Organisations Most hosting organisations should be able to assist customers with aspects of disaster recovery planning, usually specifically around the hosted infrastructure. Their data centre infrastructures should be built in such a way that some disaster prevention capabilities are included by default on all configurations. They may also be able to assist with configuring mirrored or replicated environments to provide geographic redundancy and failover to reduce the time to recovery. However, it should be noted that creating and maintaining a DR or BC plan is entirely the responsibility of the organisation that requires it. Hosting partners can assist with aspects of the plan, but the responsibility should not be handed over to them.

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback