Creating and Testing Your IT Recovery Plan

Similar documents
Disaster Recovery Is A Business Strategy

WHY BUILDING SECURITY SYSTEMS NEED CONTINUOUS AVAILABILITY

White Paper: Backup vs. Business Continuity. Backup vs. Business Continuity: Using RTO to Better Plan for Your Business

Choosing the Right Security Assessment

Why the Threat of Downtime Should Be Keeping You Up at Night

Toward an Automated Future

5 Things Small Businesses Need to Know About Disaster Recovery

Backup vs. Business Continuity: Using RTO to Better Plan for Your Business

Build a viable plan for disaster recovery and crisis management.

Next Generation Backup: Better ways to deal with rapid data growth and aging tape infrastructures

Don t Jeopardize Your Business: 5 Key Business Continuity Use Cases for Cloud

Balancing RTO, RPO, and budget. Table of Contents. White Paper Seven steps to disaster recovery nirvana for wholesale distributors

Backup vs. Business Continuity

An ICS Whitepaper Choosing the Right Security Assessment

SYMANTEC: SECURITY ADVISORY SERVICES. Symantec Security Advisory Services The World Leader in Information Security

Buyer s Guide: DRaaS features and functionality

Data center interconnect for the enterprise hybrid cloud

The 10 Disaster Planning Essentials

The Microsoft Large Mailbox Vision

White Paper: Backup vs. Business Continuity. Backup vs. Business Continuity: Using RTO to Better Plan for Your Business

Imperva Incapsula Survey: What DDoS Attacks Really Cost Businesses

THE STATE OF CLOUD & DATA PROTECTION 2018

Our key considerations include:

The 10 Disaster Planning Essentials For A Small Business Network

10 Hidden IT Risks That Might Threaten Your Business

Audit & Advisory Services. IT Disaster Recovery Audit 2015 Report Date January 28, 2015

DISASTER RECOVERY TESTING, YOUR EXCUSES, AND HOW TO WIN

From Single File Recovery to Full Restore: Choosing the Right Backup and Recovery Solution for Your Cloud Data

Provided as an educational service by: Introduction

The case for cloud-based data backup

Total Cost of Ownership: Benefits of the OpenText Cloud

AN APPLICATION-CENTRIC APPROACH TO DATA CENTER MIGRATION

RECOVERY & BUSINESS CONTINUITY SERVICES. Protect your data. Recover your environment. Manage your recovery.

The power management skills gap

A Ready Business rises above infrastructure limitations. Vodacom Power to you

Backup vs. Business Continuity: Using RTO to Better Plan for Your Business

Managed IT Services Eliminating technology pains for SMBs

Kroll Ontrack VMware Forum. Survey and Report

POWERING NETWORK RESILIENCY WITH UPS LIFECYCLE MANAGEMENT

Virtualizing disaster recovery helps ensure business resiliency while cutting operating costs.

Go Cloud. VMware vcloud Datacenter Services by BIOS

CLOUDALLY EBOOK. Best Practices for Business Continuity

INFORMATION SECURITY- DISASTER RECOVERY

An introductory guide to Disaster Recovery and how it can ultimately keep your company alive. A Publication of

THE FOUR STEPS TO A TAPELESS BACKUP ENVIRONMENT: YOUR HOW-TO GUIDE FOR DATA MANAGEMENT SUCCESS INTRODUCTION

OpenDrives storage solutions facilitate smart business continuity strategies.

IPMA State of Washington. Disaster Recovery in. State and Local. Governments

Information Technology Disaster Recovery Planning Audit Redacted Public Report

Symantec Business Continuity Solutions for Operational Risk Management

Security for NG9-1-1 SYSTEMS

Why is Office 365 the right choice?

Enabling Hybrid Cloud Transformation

Introduction to Business continuity Planning

SOLUTION BRIEF RSA ARCHER BUSINESS RESILIENCY

Table of Contents. Sample

Module 4 STORAGE NETWORK BACKUP & RECOVERY

Core Services for ediscovery Perfection

EXECUTIVE OVERVIEW. Upgrading to Magento 2

Predictive Insight, Automation and Expertise Drive Added Value for Managed Services

THE IMPLICATIONS OF PERFORMANCE, SECURITY, AND RESOURCE CONSTRAINTS IN DIGITAL TRANSFORMATION

Business Continuity Planning

BC vs. DR vs. HA vs. EM vs. RM vs. CM: is the difference only terminology?

Total Cost of Ownership: Benefits of ECM in the OpenText Cloud

Emergence of Business Continuity to Ensure Business and IT Operations. Solutions to successfully meet the requirements of business continuity.

Four Essential Steps for Removing Risk and Downtime from Your POWER9 Migration

ON CALL, ALL THE TIME DISASTER RECOVERY AS A SERVICE FROM WINDSTREAM

User Survey Analysis: Next Steps for Server Virtualization in the Midmarket

The Data Protection Rule and Hybrid Cloud Backup

Overcoming IT Challenges in the Education Segment Leveraging Cloud and On-Premise Resources for Maximum Impact

Availability and the Always-on Enterprise: Why Backup is Dead

Data Center Operations Guide

A Practical Guide to Cost-Effective Disaster Recovery Planning

Transform your network and your customer experience. Introducing SD-WAN Concierge

Accelerate Your Enterprise Private Cloud Initiative

Disaster Planning Essentials and Disaster Planning Checklist

Why Continuity Matters

WHITE PAPER BCDR: 4 CRITICAL QUESTIONS FOR YOUR COMMUNICATIONS PROVIDER

Dell helps you simplify IT

Backup and Restore Strategies

Annual Public Safety PSAP Survey results

Data Protection Using Premium Features

Transform your network and your customer experience. Introducing SD-WAN Concierge

Symantec Data Center Migration Service

Qshare - ISO compliance made easy. Get ahead of the competition. Get 1SO 9001 Certified. We make it happen. ENVIRONMENTAL & QUALITY SOLUTIONS

An SMB s Guide to Business Continuity and Disaster Recovery

Roadmap to Availability

Why Converged Infrastructure?

Business Continuity & Disaster Recovery

Cloud Connect. Gain highly secure, performance-optimized access to third-party public and private cloud providers

arcserve r16.5 Hybrid data protection

4 Criteria of Intelligent Business Continuity

IBM and Sirius help food service distributor Nicholas and Company deliver a world-class data center

A Model for Resilience

OL Connect Backup licenses

Three Key Considerations for Your Public Cloud Infrastructure Strategy

Keeping the lid on storage

IBM Resiliency Services:

ESCAPE ALL LIMITATIONS. Strong Data Protection for Microsoft Server 2012:

INTELLIGENCE DRIVEN GRC FOR SECURITY

A Mission Critical Protection Investment That Pays You Back

Transcription:

WHITEPAPER Creating and Testing Your IT Recovery Plan Regular tests of your IT disaster recovery plan can mean the difference between a temporary inconvenience or going out of business. quorum. 201 Quorum, Inc. All Rights Reserved.

Testing at least once per month is important to maintain engineering best practices, to comply with stringent standards for data protection and recovery, and to gain confidence and peace of mind. In the midst of disaster is not the time to determine the flaws in your backup and recovery system. Backup alone is useless without the ability to efficiently recover, and technologists know all too well that the only path from ought to work to known to work is through testing. A recent study 1 found that only 16 percent of companies test their disaster recovery plan each month, with over half testing just once or twice per year, if ever. Adding to the concern, almost one third of tests resulted in failure. The reasons cited for infrequent testing include the usual litany of tight budgets, disruption to employees and customers, interruption of sales and revenue, and of course the scarcity of time. This survey covered mostly large enterprises, and the challenges are even greater for smaller firms. According to the survey findings 1, half of the MBs that have implemented disaster preparedness plans did so after experiencing an outage and/or data loss. Fifty two percent put together their plans with in the last six months. However, only 28percent have actually tested their recovery plans. Yet new systems have arrived that allow daily automated testing of full recovery, putting such assurances in reach of every business. Backup without rapid recovery and testing will soon be as obsolete as buildings without sprinklers or cars without seatbelts. Define Your bjectives L C T M N E Y C T L MAXIMUM CT F PLAN TIME UNAVAILABLE TIME T RECVER TIME T RECVER Defines the length of time that an Entity can be unavailable before it impacts the company The faster you want to recover, the more it costs Does cost of recovery exceed the losses Many businesses have never tested the recovery process in the event of a server or site failure. With business continuity a core component of risk management, a well-rehearsed plan lays the foundation for confidence that your IT systems will work when needed most. In discussions of IT disaster recovery, technical terms like recovery time objective (RT) and recovery point objective (RP) are often used, but what do they really mean In practical terms, recovery time objective is the duration until a business can return to normal after the failure of a server or key computer site, and recovery point objective is the place in the transaction flow where the business resumes. Recovery Time bjective (RT) How long can your business afford to be down Recovery Point bjective (RP) How often do you backup How much data can your business afford to lose in the event of a disaster Level of ervice (L) What are your business critical servers and essential units that cannot be disrupted 201 Quorum, Inc. All Rights Reserved quorum 2

Creating Your IT BC/DR Plan: Assess, Test, Repeat ften, business leaders might take for granted functional IT infrastructure, and fail to connect the dots from possible server downtime to business loss and failure. The RT and RP definition process helps highlight this connection. When creating your IT Plan, consider the following key factors: Assess Your Current Recovery plan and Your Company s Expectations Implementing a disaster recovery plan includes documenting the process to bring a server or group of servers back online in the event of failure. An overlooked step in the process often flows from the assumption that an IT expert is always readily available. Due to the inherent unpredictability of a disaster, the IT staff that your company relies on may take time to find and start action. Considering this human latency when developing the recovery plan naturally highlights any undesirable complexity in the systems and processes, and the need to support recovery even with minimal IT expertise on hand. Questions to consider during assessment: Could a newly hired IT professional quickly handle the situation Could a remote IT engineer talk a novice through the procedures Could a smart phone web browser provide all needed access to bring your business back online Could all this happen within the RT and RP requirements In addition to reviewing your IT Plan, survey your executive team to get a realistic picture of their expectations. You could spend too much time thinking of costly alternatives to cover aspects of daily operations that may not be critical. When doing so, ask yourself and your executive team: pecifically, what level of protection is necessary (RT, RP, L) Which aspects of your company s business must stay operational in an emergency Are your physical, as well as virtual servers, protected From hould-do to Must-Do : Test Today! The smartest approach to assessing where you currently stand is to test recovery for your servers and IT facilities as implemented today. If that out-of-warranty server running long past its expected lifespan is critical, take time to test how long it takes to recover to a functional state on an alternative platform. Most backup solutions provide a sense of false security. Even if your data is backed up, how long will 201 Quorum, Inc. All Rights Reserved quorum 3

it take to recover your systems If you haven t tested it, assume it won t work. Most failures are first detected during recovery. By that time, even if the backup provider takes responsibility, rather than pointing out operational failures in your procedures, few practical alternatives may be available besides regretting avoidable omissions made painfully obvious in hindsight. A well-developed IT disaster recovery plan will identify all key processes and expose any weaknesses, and the ideal way to uncover these is through testing. To ensure you reach your objectives, perform a true recovery test on a critical server and capture these crucial observations: How long did recovery take What data proved challenging to recover Were all applications and related software returned to the exact state expected Was the recovery process feasible for IT staff operating under stress with reduced tools How would parallel recoveries amplify the challenges Learning from these questions on a single test will yield greater insight into your IT disaster recovery posture. Though obviously a sensible practice, human nature often postpones such disciplined testing, since historically it has been cumbersome, time-consuming, or simply impossible without unacceptable disruption. New technology makes regular, even daily testing feasible. This automation provides a foundation for ongoing RT and RP reporting at a management level, allowing you to better estimate and mitigate risks the business. Without access to critical data in the first 24 hours after a crisis, forty percent of all businesses will fail 2. uch dire risk can be avoided by performing regular evaluations of your IT recovery process. Testing reveals not only whether the process can technically recover your servers, applications and data, but also the risk of any excess complexity. Virtualization: Tool and Challenge for Rapid Recovery Companies increasingly employ a mix of physical and virtual servers. Do virtual servers provide redundancy Not automatically, and in practice, accidental deletion of virtual servers happens at least as often as failure of physical servers. Also, physical servers that are not easily virtualized often run the most important applications. Perhaps the domain server is virtualized, while the legacy database with crucial financial payload runs on a physical server too daunting to migrate. ften, site recovery proposals based on virtualization start with a theoretical assumption that all servers are virtualized, practical impossibility in the hybrid physical/virtual environments most common in real business environments. ften, companies embark on a virtual solution but only implement it at their primary site because a replicated AN, and an additional virtual host blade server for site redundancy is cost prohibitive. 201 Quorum, Inc. All Rights Reserved quorum 4

With new business continuity solutions available today, companies can now easily and affordably implement remote site high availability without requiring complete hardware redundancy for the virtual environments. Quorum s Recommendations 1. Identify all critical applications and servers. Include ancillary systems like domain servers. 2. In collaboration with business management and technical experts, set recovery objectives (RT and RP) that strike the right balance between risk mitigation and practicality. 3. Create a well-defined IT disaster recovery plan, and update it at least annually. Include allowances for locating and activating the right people. 4. Test your recovery process at least monthly. Choose the most critical servers, not just the most convenient. 5. Use test results to update your IT disaster recovery plan. 6. When reviewing potential solutions, include the recovery process a part of your evaluation. Test not only the technical backup capability, but also the complexity of the recovery. 201 Quorum, Inc. All Rights Reserved quorum 5

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback