1、Key Personnel Contact Info 6Notification Calling Tree 7External Contacts 8External Contacts Calling Tree 101 Plan Overview 111.1 Plan Updating 111.2 Plan Documentation Storage 111.3 Backup Strategy 111.4 Risk Management 112 Emergency Response 122.1 Alert, escalation and plan invocation 122.1.1 Plan
2、Triggering Events 122.1.2 Assembly Points 122.1.3 Activation of Emergency Response Team 122.2 Disaster Recovery Team 132.3 Emergency Alert, Escalation and DRP Activation 132.3.1 Emergency Alert 132.3.2 DR Procedures for Management 142.3.3 Contact with Employees 142.3.4 Backup Staff 142.3.5 Recorded
3、Messages / Updates 142.3.7 Alternate Recovery Facilities / Hot Site 142.3.8 Personnel and Family Notification 143 Media 153.1 Media Contact 153.2 Media Strategies 153.3 Media Team 153.4 Rules for Dealing with Media 154 Insurance 155 Financial and Legal Issues 165.1 Financial Assessment 165.2 Financi
4、al Requirements 165.3 Legal Actions 166 DRP Exercising 16Appendix A Technology Disaster Recovery Plan Templates 17Disaster Recovery Plan for 17System Two 19Disaster Recovery Plan for Local Area Network (LAN) 21Disaster Recovery Plan for Wide Area Network (WAN) 23Disaster Recovery Plan for Remote Con
5、nectivity 25Disaster Recovery Plan for Voice Communications 27Appendix B Suggested Forms 29Damage Assessment Form 29Management of DR Activities Form 29Disaster Recovery Event Recording Form 29Disaster Recovery Activity Report Form 30Mobilizing the Disaster Recovery Team Form 31Mobilizing the Busines
6、s Recovery Team Form 31Monitoring Business Recovery Task Progress Form 32Preparing the Business Recovery Report Form 32Communications Form 33Returning Recovered Business Operations to Business Unit Leadership 33Business Process/Function Recovery Completion Form 33Information Technology Statement of
7、IntentThis document delineates our policies and procedures for technology disaster recovery, as well as our process-level plans for recovering critical technology platforms and the telecommunications infrastructure. This document summarizes our recommended procedures. In the event of an actual emerg
8、ency situation, modifications to this document may be made to ensure physical safety of our people, our systems, and our data. Our mission is to ensure information system uptime, data integrity and availability, and business continuity.Policy StatementCorporate management has approved the following
9、policy statement: The company shall develop a comprehensive IT disaster recovery plan. A formal risk assessment shall be undertaken to determine the requirements for the disaster recovery plan. The disaster recovery plan should cover all essential and critical infrastructure elements, systems and ne
10、tworks, in accordance with key business activities. The disaster recovery plan should be periodically tested in a simulated environment to ensure that it can be implemented in emergency situations and that the management and staff understand how it is to be executed. All staff must be made aware of
11、the disaster recovery plan and their own respective roles. The disaster recovery plan is to be kept up to date to take into account changing circumstances.Objectives The principal objective of the disaster recovery program is to develop, test and document a well-structured and easily understood plan
12、 which will help the company recover as quickly and effectively as possible from an unforeseen disaster or emergency which interrupts information systems and business operations. Additional objectives include the following: The need to ensure that all employees fully understand their duties in imple
13、menting such a plan The need to ensure that operational policies are adhered to within all planned activities The need to ensure that proposed contingency arrangements are cost-effective The need to consider implications on other company sites Disaster recovery capabilities as applicable to key cust
14、omers, vendors and othersKey Personnel Contact InfoName, TitleContact OptionContact NumberWorkAlternateMobileHomeEmail AddressAlternate EmailNotification Calling Tree Person Identifying IncidentExternal ContactsLandlord / Property Manager Account Number NonePower Company Account Number Telecom Carri
15、er 1 FaxTelecom Carrier 2Hardware Supplier 1Emergency ReportingServer Supplier 1 Account Number.Work Email Address Workstation Supplier 1 Office Supplies 1Account Number C3095783Insurance Name Site Security Off-Site Storage 1Account NumberOff-Site Storage 2 User IDPasswordHVAC Power Generator Other
16、External Contacts Calling Tree1 Plan Overview1.1 Plan UpdatingIt is necessary for the DRP updating process to be properly structured and controlled. Whenever changes are made to the plan they are to be fully tested and appropriate amendments should be made to the training materials. This will involv
17、e the use of formalized change control procedures under the control of the IT Director. 1.2 Plan Documentation StorageCopies of this Plan, CD, and hard copies will be stored in secure locations to be defined by the company. Each member of senior management will be issued a CD and hard copy of this p
18、lan to be filed at home. Each member of the Disaster Recovery Team and the Business Recovery Team will be issued a CD and hard copy of this plan. A master protected copy will be stored on specific resources established for this purpose. 1.3 Backup StrategyKey business processes and the agreed backup
19、 strategy for each are listed below. The strategy chosen is for a fully mirrored recovery site at the companys offices in _. This strategy entails the maintenance of a fully mirrored duplicate site which will enable instantaneous switching between the live site (headquarters) and the backup site.KEY
20、 BUSINESS PROCESSBACKUP STRATEGYIT Operations Fully mirrored recovery siteTech Support - Hardware Tech Support - Software Facilities ManagementEmail Purchasing Disaster Recovery Finance Contracts Admin Warehouse & Inventory Product Sales Maintenance Sales Human Resources Off-site data storage facili
21、ty Testing Fully Mirrored Recovery site -Workshop Fully Mirrored Recovery site -Call CenterWeb Site 1.4 Risk ManagementThere are many potential disruptive threats which can occur at any time and affect the normal business process. We have considered a wide range of potential threats and the results
22、of our deliberations are included in this section. Each potential environmental disaster or emergency situation has been examined. The focus here is on the level of business disruption which could arise from each type of disaster. Potential disasters have been assessed as follows:Potential DisasterP
23、robability RatingImpact RatingBrief Description Of Potential Consequences & Remedial ActionsFlood34All critical equipment is located on 1st FloorFireFM200 suppression system installed in main computer centers. Fire and smoke detectors on all floors. Tornado5Electrical stormsAct of terrorismAct of sabotageElectrical powerfailureRedundant UPS array together with auto standby generator that is tested weekly & remotely monitored 24/7. UPSs also remo
copyright@ 2008-2022 冰豆网网站版权所有
经营许可证编号:鄂ICP备2022015515号-1