8 Steps to Creating an Efficient IT Disaster Recovery Plan

National disasters aren’t the only things that can cause widespread outages and damage. In Kenya, millions of homes and business were without electricity thanks to a monkey.

Your business isn’t safe based on your geographic location alone. Various threats can destroy data and ruin an organization. That’s why it’s important for all companies to have a solid IT disaster recovery plan.

In the event of an emergency or disaster, make sure your systems, personnel, and data are well-protected by following these disaster recovery solution guidelines.

1.    Keep an Inventory of all Hardware and Software

Include in your DR plan a complete inventory of all company hardware and software based on priority. Next to each name, list the vendor contact information and phone number for technical support.

2.    Decide What You’re Comfortable with for Downtime and Loss of Data

After listing your hardware and software, the framework for your DR plan starts here. If you’re an electrician, you could probably keep your business going for a while without technology or servers. But if you’re Amazon, you’re limited to mere seconds of downtime. Knowing where your business falls on the spectrum will help you decide which disaster recovery solution you need.

Take your list of company software and applications and rank them into three tiers.

·         Tier 1 = systems you can’t do business without and need immediately

·         Tier 2 = applications or systems you need within 8-12 hours, even up to 24 hours

·         Tier 3 = applications you could survive without for a couple days

Defining your applications and systems helps you prioritize and improve the speed and success of recovery. Be sure to test your plan at least twice a year and update your tiers based on the results.

3.    Identify Who Is Responsible and for What

Your DR plan should clearly define roles and responsibilities including designating a person responsible for declaring a disaster. Defined roles make disaster recovery tasks easier to manage when all parties are familiar with their responsibilities. This is even more critical when working with third party vendors. When everyone is on the same page, the DR process works as efficiently as possible.

Protocols for an effective DR plan should include who to contact, how to contact them, and in what order they should be contacted to get systems up and running. Create a contact list with all DR personnel to include the details of their position, role, responsibilities, and contact information. Also, consider putting a succession plan in place with trained back-ups in case someone is on vacation or leaves the company.

4.    Establish a Communication Strategy

Good communication plans are often overlooked, but incredibly valuable. If disaster strikes, how will you communicate with employees? Do they know how to access the systems they need to do their job? During a disaster, phone or email may be down so alternative methods of communication should be identified.

A good plan also includes initial communication when a disaster takes place and ongoing updates to keep everyone informed. Clear communication is essential in managing IT disaster recovery with timely updates sent to employees, suppliers, and vendors. A written communication process can help lead to action and align organizations, employees, and partners.

To keep your customers up-to-date in the event of an emergency, publish a statement on your website and social media platforms. Offer prompt status updates showing you’re aware of the situation and working to take care of it.

5.    Tell Employees Where to Go in an Emergency

A good DR plan doesn’t just back-up your technology. It protects your employees and keeps your team operational. In the event your primary office isn’t available, select an alternate site for employees to work. Make sure employees know where to go and how to access systems from the new site. Offer a clear map of the alternative site including where to sit.

Keep in mind any compliance regulations and contract dedicated workspace where employees and company data remain private. Contract a large enough space with seats for all employees needed to meet recovery requirements.

6.    Check if Your Service-Level Agreements Include Disasters or Emergencies

If you store systems in a data center or outsource technology, have a binding agreement with the provider which defines the level of service you’ll receive if a disaster takes place. The agreement may include the timeframe to get systems back up and running.

7.    Outline How to Manage Sensitive Data

Outline IT disaster recovery technical procedures to make sure sensitive data is protected. Address how the information is maintained and accessed when your DR plan is activated.

8.    Test Your DR Plan Often

Backups and systems may fail you, the internet connection may be too slow, and a key employee may have changed her cell number. The only way to find out if a plan works is to test it.

Define how your DR environment will be tested including the methods and frequency. Infrequent testing often leads to DR environments that don’t work as planned. Create a testing schedule that measures your recovery time objective (RTO) and recovery point objective (RPO) goals to validate they can be met. The more comprehensive the testing, the more successful your company will be at surviving a disaster. If a DR test fails, identify the issues and fix problems early so you’re ready for any crisis.

Don’t forget to test key DR employees. They should be well-versed in the plan and their role in completing tasks. Simulated disasters and drills give your staff the experience and confidence to execute the plan if an actual disaster occurs.

Avoid being caught off-guard when a disaster strikes. Map out disaster recovery solutions and put them to the test so your business can handle any challenge. 

Cloud Computing: More Than Just Infrastructure

Cloud computing infrastructure, including private cloud infrastructure, set a whole new standard for infrastructure expectations. Until recently, computing infrastructure took weeks, months, or years. Much of this depended upon project priority, budgeting, and the availability of staff.

Today, cloud computing infrastructure is measured within minutes. Thanks to AWS, Azure, and Google Cloud, you can go from initial cloud setup to running virtual servers in under 10 minutes.

Both developers and applications groups are thrilled about cloud computing infrastructure innovations offering faster application development and deployment. Quality also improves because infrastructure rationing is no longer necessary. The new speed and accuracy allow development teams to create fast infrastructures to try new initiatives and take them down quickly if they don’t work.

Fast infrastructure capabilities are great, but cloud computing offers even more. Infrastructure is just the foundation of cloud computing with more value just waiting to be discovered. Other cloud computing services can speed up software development which pushes the lifecycle process into overdrive.

Evolution in Cloud Computing Thought

Drew Firment of Capital One shares the evolution in thought surrounding cloud computing in his blog. Cloud computing is leading to an IT revolution. It requires companies to rethink how they deliver value to their customers and reminds them that their customers don’t care about their private cloud infrastructure. They’re more concerned about the customer experience.

Firment points out many IT organizations and employees fail to understand a customer’s indifference to the company’s computing includes everything except the value experienced by the customer.

He also notes about the DevOps toolchain many IT organizations are creating to make their application pipeline as fast as the infrastructure:

·         Unique combinations of CI/CD tools used throughout an organization are counterproductive and unnecessary. While most enterprise DevOps continuous delivery pipelines work locally, they are detrimental to the well-being of the whole system.

·         Similar stories play out between the DevOps pipeline and the commoditization of infrastructure into a compute grid by AWS. Thanks to CodeBuild, a newer addition to AWS Developer Tools, you have fewer reasons to roll your own pipeline.

This means IT organizations should examine how they go from the concept idea of an application to the delivery of functionality to a user in the fastest and cheapest way possible. Any factor that doesn’t differentiate the parent company in the marketplace is ripe for replacement by a low-cost provider, typically a scale cloud provider.

This allows IT organizations to focus their budget and efforts on features that offer their customers unique functionality. Though adopting this idea means IT organizations must understand cloud computing as something that’s more than just fast and cheap infrastructure. It’s a full set of computing services for building applications quickly. Even more, every service an application group leverages becomes part of an application the group isn’t responsible for. This off-loading of responsibility allows groups to place their focus and efforts on customer value.

While IT organizations spend so much time obtaining and managing private cloud infrastructure, it’s challenging to recognize how cloud computing changes assumptions with delivering applications. Firment reminds IT organizations to change their assumptions from managing computing resources to recognize they’re delivering customer value.

In addition, IT organizations need to understand this requires evaluating their entire value chain and focusing solely on what they can deliver. This means passing the responsibility of the computing stack by as much as possible and utilizing staff resources for company-specific functionality.