Manage

Disaster recovery and business continuity plans require updating

Updating business continuity and disaster recovery plans can seem daunting, but it becomes easier when you delegate tasks and focus on the most important parts.

Paul Kirvan

Published: 11 Nov 2016

We can probably all agree on the importance of keeping disaster recovery and business continuity plans up to date,...

Step 2 of 2:

You forgot to provide an Email Address.

This email address doesn’t appear to be valid.

This email address is already registered. Please login.

You have exceeded the maximum character limit.

Please provide a Corporate E-mail Address.
- I agree to TechTarget’s Terms of Use, Privacy Policy, and the transfer of my information to the United States for processing to provide me with relevant information as described in our Privacy Policy.
Please check the box if you want to proceed.
- I agree to my information being processed by TechTarget and its Partners to contact me via phone, email, or other means regarding information relevant to my professional interests. I may unsubscribe at any time.
Please check the box if you want to proceed.

but what's the best way to keep these documents current? Here are some suggestions to motivate you to find the time and make the effort.

How large are your disaster recovery (DR) and business continuity (BC) plans? In this case, we're talking page count. If your DR and BC plans are 50 to 100 pages or more, it will be difficult to step aside from your primary duties -- unless the plans are your primary responsibilities -- and focus on something that you hope you never have to use.

Begin by zeroing in on the sections of the disaster recovery and business continuity plans that are most likely to change in the course of a year. These will probably include the following:

Emergency team names and contact details
Lists of mission-critical equipment
Lists of mission-critical apps
Lists of vendors and suppliers
Lists of vital records and critical business documents
Lists of office supplies
Lists of manufacturing components, such as raw materials and partially finished products
Organization charts
Lists of minimal operational requirements to resume business
Lists of emergency supplies, such as medical supplies, flashlights and radios
Lists of employees and contact details for calling trees (if used)

Remember, it's not necessary to update the entire plan at one time. The key is to perform the review and update the plan components on a regular basis. You may decide that, based on the above list, you can update sections of the plan within different time frames, perhaps annually, every other year or quarterly.

If you have a staff, delegate the updating of disaster recovery and business continuity plans to one or more of your team members. By breaking the plans into more manageable parts, the task of updating becomes less onerous, especially to the person who gets the assignment.

Drilling down into business continuity, disaster recovery and BIAs

For department-level plans, you must depend on someone (plus someone to back up that person) from the department to take responsibility for plan updating. Consider the same strategy as above: Break the plan into smaller, more manageable parts. It will help to have a schedule to remind department plan owners to update their plans or at least a section of their plans. Reminding plan owners periodically of an update activity may actually help to increase awareness of the business continuity plans and remind them of the importance of their plans.

If you have a staff, delegate the updating of disaster recovery and business continuity plans to one or more of your team members.

Many of the same components in business continuity plans will be in disaster recovery plans, especially lists of emergency team members, vendors, systems and applications, and diagrams of networks or equipment racks. Some activities, such as regular testing of backup diesel/natural gas generators or uninterruptible power systems, may be performed as part of facilities and IT operations testing, respectively. Test scripts should be reviewed following changes to the technology infrastructure -- updates to operating systems, and changes in database management systems, security equipment (such as firewall rules) and network components. Be sure to perform DR plan updates whenever changes to IT assets occur.

Updating a business impact analysis, by contrast, can be a challenge unless you can simplify the process. Ask the BIA owner to review the document and identify anything that has changed, such as priorities for recovery, dependencies (both internal and external), mission-critical business processes, required technologies, required vital records and any other relevant BIA measurements.

You can try breaking this activity into smaller components:

Update business processes
Update dependencies
Update required technologies

However, changes in business processes may necessitate a re-evaluation of all BIA measurements associated with a specific process. As such, it may be more of a challenge to do a "fragmented" BIA update.

Having a schedule for updating disaster recovery and business continuity plans is an important starting point. Be sure to follow the schedule and make note of the updates, as this may be an important piece of audit evidence. Next, break the updating process into smaller, more manageable bites as a way to make it less of an "all or nothing" proposition.

Next Steps

Guidelines for disaster recovery and business continuity planning

Who to involve in the BC/DR planning process is a broad issue

What happens when your disaster recovery plan funding is low

Dig Deeper on Disaster recovery planning - management

business impact analysis (BIA) Business impact analysis (BIA) is a systematic process to determine and evaluate the potential effects of an interruption to critical business operations as a result of a disaster, accident or emergency.

Conduct a business impact analysis with these tips and tools A business impact analysis is a fairly standard part of disaster recovery planning, but nuances within your organization may affect your approach to conducting and using a BIA.

business continuity and disaster recovery (BCDR) Business continuity and disaster recovery (BCDR) are closely related practices that describe an organization's preparation for unforeseen risks to continued operations.

Six BC/DR plan questions you might be afraid to ask When crafting a business continuity and disaster recovery plan, there are a lot of steps and factors to consider. We've compiled the top questions you might be afraid to ask.

Top five disaster recovery templates The editors of SearchDisasterRecovery.com have compiled this list of our five favorite templates published this year.

Ways to align ITIL processes with your disaster recovery plan Aligning ITIL processes to your DR plan leads to more efficient and effective use of IT infrastructure. Learn more about ITIL processes and DR in this tip.

Paul Kirvan asks:

How often do you update your business continuity and disaster recovery plans?

Join the Discussion

Drilling down into business continuity, disaster recovery and BIAs

Please create a username to comment.

Vancouver Canucks defend data with Veeam backup

In your data archive strategy, how long is long enough?

HYCU backup for Google Cloud adds SAP HANA support

NetApp storage systems growth hinges on cloud transition

Michael Dell on Dell cloud strategy: On-premises cloud rules

Is Zadara storage as a service right for your company?

Explore compelling benefits of hyper-converged infrastructure

Get to know Nutanix hyper-converged infrastructure products in-depth

Dell EMC PowerOne, On Demand add cloud-like pricing

Drilling down into business continuity, disaster recovery and BIAs

Next Steps

Dig Deeper on Disaster recovery planning - management

Join the conversation

1 comment

Register

Login

Forgot your password?

Your password has been sent to:

Please create a username to comment.