Disaster Recovery Plan Essay Example for Free

Disaster Recovery Plan Essay Disasters have become an inevitable part of businesses and organizations as well. They not only have a major effect on business and organizational continuity; they also result to an overhaul in organizational operational mechanisms (Awasthy, 2009). It is for this reason that many organizations and business resort to preparing business continuity plans and disaster recovery plans that will facilitate better disaster management in future. Effective disaster recovery plans are important to every business and organization (Thejendra, 2008). This is a disaster recovery plan is prepared for Bain Company. This plan establishes goals, objectives and programs for the handling threats and natural disasters. The plan will provide a framework for recovery by anticipating future threats and disasters within or around the organization. It will be aimed at considering the security and protection of the business staff and its clients. It will also ensure that there is a reduced amount of business intermission that disasters are usually associated with. Examples of disasters that may occur within the business are: natural disasters such as tsunamis, hurricanes, earthquakes, among others; terrorist threats, bomb attacks, strikes and civil riots, fires, among others (Thejendra, 2008). Bain Company Bain Company is a business consulting firm that works with many executives from different organizations to assist and aid them in making proficient decisions, actualize these decisions and enhance business sustainability. Its main objectives include enhancing business ideas into viable actions; to have a paradigm shift in business management and enhance innovations and technologies into business operations. With over 48 offices in 31 countries worldwide, it is a global entity with an edge over the rest. Disaster Recovery Plan for Bain Company The Disaster Recovery Plan that will give reference of how disaster recovery will be done, the responsibilities of each actor, and recovery measures that will be taken in case of occurrence of disasters. The plan will also include the safety measures or proposals for better safety techniques (Menken and Blokdjik, 2010). Confidentiality Statement This document will remain the property of Bain Company and shall not be duplicated or given out under any circumstance; reliant on the fact that the type of information in the plan is endemic to Bain Company. Document Distribution Every member of the management and planning team will keep copies of the manual plan. Distribution will be kept in track by the Disaster Management Board of Bain Company. Plan Objectives †¢ To ensure that the safety and protection of all the employees and customers of the firm is enhanced in case of disasters †¢ To ensure that business continuity of Bain Company is enhanced without much intermission. †¢ To ensure that information is well handled and controlled during the disaster recovery process. †¢ To consider alternative courses of action that will be used in the worst case scenario. Recovery Strategies These are the measures that Bain Company should implement in order to enhance business continuity and avoid rapid losses (Thejendra, 2008). It should have a computing system of business and firm records. This will ensure that data backup is enhanced and therefore during disasters business records of Bain Company still available. This will ensure that the business operations continue to run effectively. The firm should also consider establishing an external facility that will house them in case the building they were housed in previously is destroyed. This will also ensure that the operations of Bain Company continue to run smoothly without breaks (Thejendra, 2008). The management of Bain Company should ensure that the firm runs under insurance. Insuring the firm’s activities will ensure that the firm is able to make up for the lost equipment, furniture as well as data. Consequently, it will make sure that Bain Company does not run at a loss when trying to replace these items (Awasthy, 2009). Disaster Plan Declaration All efforts of the firm are aimed at establishing and developing an active and cyclic planning process and document that will foster innovation and technology and that will ensure that the disaster recovery process is participatory, up to date and timely to meet the objectives of Bain Company. Assessment of security Security measures to be input into the firm to boost disaster recovery process include establishing firm registry in bomb proof vaults that will shield the firm’s documents and data from disasters such as terrorist attacks. Such will ensure that the records of the firm are not tampered with and as such the company is able to run business without fundamental data loss (Menken and Blokdjik, 2010). The company can also ensure the installment of fire extinguishers and fire exit doors within the firm’s premises to create better channels of evacuation during fire outbreaks. In addition, smoke detectors and alarms should also be installed to signify and create warnings in case of such. Establishing access codes to data registries is another security measure that the firm can uphold. This will ensure that confidential data and information is only managed by a certain level of management. In addition, during threats such as civil unrests or riots data will be managed effectively (Thejendra, 2008). Potential disaster scenarios and methods of dealing with the disaster Potential disasters that Bain Company may be faced with include fire, bomb or terrorist attacks, dangerous and threatening situations such as riots or attacks, hurricane, tornadoes and earthquakes, among others (Awasthy, 2009). Fire preparedness In case of a fire the employees should report immediately to the nearest fire department office in the area; notify the Incident Commander or Departmental Manager available during that time. If it is a small fire, the person should try extinguishing it using the fire extinguishers available. If it is a large fire, the person should vacate the building and make no attempts to put it out. Once the Incident Commander is on scene, the decision on evacuation will be made. The alarms should be set on so that other employees can be notified of the events going on in the firm. Evacuation should then be made possible by security personnel or evacuation team present. The employees should be warned not to use the lifts or elevators during a fire incident. Employees should also assemble in areas designated for fire assembly (Menken and Blokdjik, 2010). Bomb/ Terrorist attack Preparedness In case of a notification of bomb or terrorist attack in the firm the first step should be to notify police departments immediately. The attack or threat should then be communicated to the Manager and Incident Commander who will organize for evacuation of the building premises. Other departmental heads and members of other firms within the same building should also be notified (Menken and Blokdjik, 2010). Dangerous Attacks and Threatening Situations These may include hostage situations, dealing with armed robbers and strikes and riots from employees. In such situations, one of the employees who is outside the building at such a time should be notified so that they can notify the police departments of the problem. The security personnel of the building where the firm exists should also be notified. If possible, an effort should be made to understand the motive of these people and thus come to an agreement with them (Menken and Blokdjik, 2010). Disaster Recovery Procedures These are the steps that will guide the whole plan and will be implemented in case a disaster occurs. This process will encompass setting and establishing of a set of laws and disciplines that will guarantee business operations to continue without intermissions (Awasthy, 2009). First, there will be need to set up a planning committee that will foresee the establishment of programs to be done in case of a disaster. The plan should be able to oversee all actions and implementary measures necessary. The next step is risk assessment. This is important so that the management of the firm is able to quantify risk levels against the firm from potential disasters. It will also guide the implementation of safety measur es in the firm (Thejendra, 2008). There would be need to establish and define recovery modes and strategies. These are the strategies that the firm would adopt in case a disaster such as a fire hit them. It would define who will be responsible for doing a particular activity, how they will do it and the time allocation for each activity. Furthermore, the preparation and documentation of the formulated plan of action will be done. This will be important because it will enable every member of staff to have the document, get accustomed to it and internalize it so that they are well prepared in case a disaster occurs. Plan documentation is also important for review it and alteration from time to time (Thejendra, 2008). Consequently, alternative courses of action and a verification criterion is developed. They are important because they give the firm other actions to carry out or work with in case the original plan doesn’t fit the needs of the firm at that moment. They will hence enable business continuity (Thejendra, 2008). Finally, plan implementation is the last step in the Disaster Recovery Procedure. This is where the planning team will be able to implement the proposals and courses of action that they have developed in the formulated plan. Incident Response Team This is a team of experts who will be included in the emergency response strategy prepared for the disaster recovery plan. They include: First aid teams, fire control teams, security personnel, supplies teams and service teams (Menken and Blokdjik, 2010). Mission Statement The Bain Company Incident Response Team will support the operations of the firm’s resources through the provision of quality, fast and effective response to disasters (natural and manmade) and threats that face the business and adequate response training through research and innovation. Declaration All human efforts will be geared towards ensuring that the safety, protection and security of all employees and data of the Bain Company are at peak during disaster recovery. It will be the priority of the Incident Response Team to ensure that the sustainability of business operations of Bain Company is enhanced. Organizational structure of the Incident Response Team The Incident Response Team shall have the following an incident command center, planning team, logistics team, operations team and finance team. [pic] Proposed Network Architecture The proposed network architecture will involve a computerized back up system for the company that will back up all the data. All the company data will be stored in a backup system that is rigid and devoid of any disaster in an area that is far from the normal company. The arrows in the above diagram show how data is collected from the branch offices of the company to the main office. The data is then collected and backed up in the facility for quick recovery. Roles and responsibilities The team manager is the person that is accountable of all the actions that the Incident Response Team is tasked to do. The manager is the administrator in general of all the personnel in the team. The Planning team is responsible for charting up a plan of how the incident team will operate. The Logistics team inclusive of Intrusion Analysts identifies the actual intrusion point of the disaster in the firm’s operations. In addition, business resource planners are responsible for mobilization of resources within the firm to ensure interruption of operations is minimal. The operations team will include security personnel responsible for raising awareness and warnings, maintaining order and evacuation supervision; fire control team is responsible for firefighting activities; First Aid team responsible for providing basic and advanced first aid to injured people, if any; supplies teams for providing sanitation and medical supplies, food, and blanket supplies; service teams offer transport, shelter and vital records management. The Public Advisory Manager is responsible for relaying information about the disaster within the firm and also to the press and general public Information flow and methods of communication Information flow within the Incident Response Team should be done through the Public Advisory Committee. They should also answer all general public concerns regarding the disaster that the business has encountered. Any information that is trickled out of the firm should be handled carefully to prevent creating unnecessary tension. It should also be handled through a solitary source to prevent distortion of information. The Public Advisory Committee will determine methods of communication such as hourly announcements via public address systems or through the media so that the general public can be aware as well. Services provided by the IRT The Incident Response Team provides the following services such as training the staff of the business to instill in them practicable and viable skills of coping with disasters when they occur. In addition it should offer drilling exercises that will improve awareness of how to act in case disasters such as fires happen to occur (Menken and Blokdjik, 2010). Authority and reporting procedures All authority runs back to the Team Manager or Incident Commander. He is responsible for relaying all commands regarding how activities and procedures will be done within the Incident Response Team. All procedures and administrative actions should have a top-down approach. Conclusion Disaster Recovery Plans are important because they help the organization chart out a way forward when encountering natural or manmade disasters. They should be effective, efficient and up to date to keep up with the organizational trends taking shape in the world today. References Awasthy, A. (2009). Disaster Management: Warning Response and Community Relocation. New Delhi: Global India Publications Menken, I. and Blokdijk, G. (2010). Disaster Recovery and Business Continuity It Planning, Implementation, Management and Testing of Solutions and Services Workbook Second Edition. Brisbane: Emereo Pty Limited Thejendra, B. S. (2008). Disaster Recovery and Business Continuity: A Quick Guide for Small Organizations and Busy Executives. London: IT Governance Ltd