Solved

Need an IT Continuity/Diaster Recovery plan

Posted on 2006-07-19
4
302 Views
Last Modified: 2010-03-19
Our auditors are requiring that we have a continuity/diaster recovery plan.  I know it makes sense but I've never writen one and the ones online are expensive.  If anyone has one they are willing to donate or even sell that is specifically tailored for IT, let me know.  We are the Society for the Prevention of Cruelty to Animals so our budget is small.

Thanks,

J.R.
0
Comment
Question by:J.R. Sitman
  • 2
4 Comments
 
LVL 5

Accepted Solution

by:
Dbergert earned 500 total points
ID: 17139007
I don't think that you can just "buy" a plan, as many specifics are unique to your business and level of risk, systems, processes, etc.

Here are some sample plans to follow:  http://www.drj.com/new2dr/samples.htm

Gennerally the process would work as follows:
Atucally I'll just refer you here as it does a good job:  http://www.disasterrecoveryworld.com/

Basically you will need managments buy off and support for this as this is generally not a small task  , this will also require continous updating, annual testing, etc. and mostly requires many man hours and documentaion.

I also suspect that if you "buy" a DR plan and the auditors reivew it.. they will ask you to rewrite it and ask how it applies or worse yet write you up on things in the Plan that "aren't true"
Best bet is to respond to the auditors with a plan that is reasonable that shows how you will implement and develop a BCP plan.

some more info here:  http://en.wikipedia.org/wiki/Business_continuity_planning

Good Luck

0
 

Author Comment

by:J.R. Sitman
ID: 17139119
Sorry, I didn't mean to imply that I would buy one and turn it in.  I just need a starting point.  I'll checkout the links you sent.

Thanks
0
 
LVL 5

Expert Comment

by:Dbergert
ID: 17139318
Thats good, let me know if you have any other questions

Also here is another good guide:  http://csrc.nist.gov/publications/nistpubs/800-34/sp800-34.pdf
0
 
LVL 44

Expert Comment

by:scrathcyboy
ID: 17142512
A disaster recovery plan is just a statement of intent, for federal regulations, it is NOT something etched in stone on the front wall of your office building.  It is just a PLAN.  And as such, it is just a guideline that says that your company is aware of this regulatory need, and here is the PLAN we would generally follow.

So I disagree, you can get any plan you want, change the wording to fit your company, submit it to the auditors, and that satifies the regulatory requirement.  That is all there is to it.  Weve done lots of them.
0

Featured Post

Active Directory Webinar

We all know we need to protect and secure our privileges, but where to start? Join Experts Exchange and ManageEngine on Tuesday, April 11, 2017 10:00 AM PDT to learn how to track and secure privileged users in Active Directory.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
FreeRADIUS vs Windows NPS (server 2016) 2 137
Cisco 2960 unable to add SFP modules to device 9 68
software inventory tools 3 42
VPN Ports 8 33
PRTG Network Monitor lets you monitor your bandwidth usage, so you know who is using up your bandwidth, and what they're using it for.
Most of the applications these days are on Cloud. Cloud is ubiquitous with many service providers in the market. Since it has many benefits such as cost reduction, software updates, remote access, disaster recovery and much more.
Internet Business Fax to Email Made Easy - With  eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, f…
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…

820 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question