I just accepted the position of LAN Manager for a small company. There is an "incumbent" in the position who, by the owners account, will not be happy with the addition/replacement. They asked me to come up with a DR recovery plan. They have a small network; one or two routers, two servers, a huge SQL database and 25 workstations but I have not physically seen or touched the network yet. They are worried about sabotage, Cisco configs disappearing, user files being deleted, password changes, network intrusion and database destruction. Has anyone come across this type of situation without seeing the network? I will probably start on Monday, November 15th, and they feel that he might walk and do major damage before he leaves. I've done some research on DR and have had some hands on experience with implementing a DRP, but not in a specific situation such as this.
Any input, technical or otherwise would be greatly appreciated.