Business Continuity &
Disaster Recovery Template

A disaster recovery is a response to a declared disaster or a regional disaster. It is the restoration or recovery of an entire Agent computer. A disaster recovery plan describes how an organization is to deal with potential disasters.

The DRP template includes everything needed to customize the Disaster Recovery Plan to fit your specific requirement. More...

Security Manual Template

Most companies have initiated the necessary steps to safeguard their company assets. Information security has moved from a business cost to a business enabler. However, new threats and technologies are constantly and rapidly changing the network landscape. System administrators must scan the network continually for known security weaknesses, keep their skills current and, most important, reexamine corporate security policies periodically.

The IT Security Manual Template provides all the essential sections of a complete security manual and walks you through the creation of each step.. More...

Job Descriptions

The Internet and IT Position Descriptions HandiGuide® was completed in 2010 and is over 650 pages; which includes sample organization charts, a job progression matrix, and 231 Internet and IT job descriptions.  The book also addresses Fair Labor Standards, the ADA, and is in a new easier to read format. More...

Best Offer Bundle

Audit Program

Compliant Audit Program

DRP / BCP Issues

What is
Disaster Recovery?

DRP BCP Basics

Why Plans Fail

Cloud Backup

Are You Prepared
for a Disaster?

Pandemic

Risk Assessment

Process

Best Practices

Media Communication

Clean up - How To

What to do after
an explosion,
terrorist attack, or
random act of violence

Disaster Recovery
and Business Continuity

Metrics

Funding

Funding Request
Presentation

Maximum Tolerable
Period of Disruption

Disaster Recovery Guide

Common Mistakes

Why Disaster Recovery
Business Continuity
is not complete
and or inaccurate

 

Disaster Recovery Planning is Key to Business Continuity

Exposure Types

ISO 27000, SOX, PCI-DSS & HIPAA Compliant

Order DRPSample DRP

The Standard for Business Continuity and Disaster Planning

Enterprise & World LicenseDRP Customers
    

Janco's Disaster Recovery Planning (DRP) Template can be used for any size of enterprise. The Disaster Recovery template and supporting material have been updated to be Sarbanes-Oxley and HIPAA compliant. The Disaster Planning Template comes as both a Word document and a static fully indexed PDF document and includes:

  • Disaster Recovery Planning and Business Continuity Planning Template,
  • Business and IT Impact Analysis Questionnaire,
  • Work Plan,
  • Disaster Recovery / Business Continuity Audit Program, and
  • Pandemic Planning Checklist.

Preparation for Disaster Recovery / Business Continuity in light of SOX has two primary parts. The first is putting systems in place to completely protect all financial and other data required to meet the reporting regulations and to archive the data to meet future requests for clarification of those reports. The second is to clearly and expressly document all these procedures so that in the event of a SOX audit, the auditors clearly see that the DRP exists and will appropriately protect the data.

New are (Version History):
  • Backup & Backup Retention Policy,
  • Disaster Recovery Audit Program,
  • Compliance with the ISO 27000 Series Standards (formerly ISO 17799 now ISO 27001 & ISO 27002), Sarbanes-Oxley, PCI-DSS, and HIPAA,
  • Web Site Disaster Recovery Planning Form,
  • Project Status Report Form,
  • Personnel Location Report,
  • Department Disaster Recovery Activation Workbook,
    • Quick Reference Guide,
    • Team Alert List (Form),
    • DRP Team Responsibilities,
    • DRP Team Checklist,
    • Critical Function(s) Definition,
    • Normal Business Hour Response Procedures,
    • After Hours Response Procedures,
    • DRP Location(s) Definition,
    • DRP Recovery Procedures,
    • Notification Procedures,
    • Notification Call List (Form),
  • Updated Business and IT Impact Analysis Questionnaire,
  • Vendor Disaster Recovery Questionnaire,
  • Vendor Phone List Form Updated,
  • Key Customer Notification Form,
  • Critical Resources to be Retrieved Form,
  • Business Continuity Off-Site Materials Form, and
  • Business Continuity Audit Program,
The premium edition contains 15 full job descriptions. They are:
  • Chief Information Officer,
  • Chief Security Officer,
  • Chief Compliance Officer,
  • VP Strategy and Architecture,
  • Director Disaster Recovery and Business Continuity,
  • Director e-Commerce,
  • Manager Disaster Recovery,
  • Manager Disaster Recovery and Business Continuity,
  • Disaster Recovery Coordinator,
  • Disaster Recovery - Special Projects Supervisor,
  • Manager Database,
  • Capacity Planning Supervisor,
  • Manager Media Library Support,
  • Manager Site Management, and
  • Pandemic Coordinator.

Order DRP BCPSample DRP BCP

 

 

 

 

DRP / BCP News



ISO 17799 - disaster recovery - business continuity defined

SO 17799 is often used as a generic term to describe what are actually two different documents: ISO17799 (also ISO 27002), which is a set of security controls (a code of practice), and ISO 27001 (formerly BS7799-2), which is a standard 'specification' for an Information Security Management System (an ISMS).

DRP Security Template  DRP BCP Audit

ISO 17799 establishes guidelines and general principles for initiating, implementing, maintaining, and improving information security management in an organization. The objectives outlined provide general guidance on the commonly accepted goals of information security management. ISO/IEC 17799:2005 contains best practices of control objectives and controls in the following areas of information security management:

  • security policy;
  • organization of information security; 
  • asset management;
  • human resources security;
  • physical and environmental security;
  • communications and operations management;
  • access control;
  • information systems acquisition, development and maintenance;
  • information security incident management;
  • business continuity management;
  • compliance.

The control objectives and controls in ISO/IEC 17799 are intended to be implemented to meet the requirements identified by a risk assessment. ISO/IEC 17799 is intended as a common basis and practical guideline for developing organizational security standards and effective security management practices, and to help build confidence in inter-organizational activities

- more info


Disaster Planning is Complex

An increasing number of professionals know that small-scale emergencies can be contained if staff members are prepared to react quickly. Damage can be limited even in the face of a large-scale disaster. For example, cultural institutions in Charleston, South Carolina, formed a consortium that focused on disaster preparedness several years before they were hit by a hurricane. Many of those institutions sustained only minor damage because they were able to put their early warning procedures into operation.

Disaster planning is complex; the written plan is the result of a wide range of preliminary activities. The entire process is most efficient if it is formally assigned to one person who acts as the disaster planner for the institution and is perhaps assisted by a planning team or committee. The enterprise's director may play this primary role or may delegate the responsibility, but it is important to remember that the process must be supported at the highest level of the organization if it is to be effective. The planner should establish a timetable for the project and should define the scope and goals of the plan, which will depend largely on the risks faced by the enterprise.

- more info


Disaster recovery business continuity team leader tasks

The tasks that the leader of a disaster recovery business continuity project needs to complete are:

  •  Establish BC program lifecycle processes within your organization
  • Assess business and technology requirements for a BC plan
  • Evaluate business continuity risks to your organization
  • Identify and select cost-effective BC recovery strategies
  • Organize an effective BC team
  • Develop a BC plan document
  • Coordinate BC plan with external entities
  • Develop an effective test plan for testing the BC plan
  • Organize and conduct successful BC plan tests
  • Establish a process for maintaining the BC plan
  • Implement a BC plan change management process
  • Understand the main differences between a disaster recovery plan, emergency response plan, crisis management plan, and business continuity plan
- more info


Business continuity after a terroist attack or a pandemic

Most aspects of business continuity and disaster recovery planning apply to terrorist attacks and pandemics just as much as to fires, hurricanes, floods, earthquakes, and other natural and manmade disasters.  Business Continuity However, there are a number of areas that need to be re-visited because of the uniqueness of these types of interruptions. 

  • Communication - While communication is important in any disaster recovery scenario, it is particularly critical in the event of a terrorist attack or a pandemic. Employees and their families may be personally threatened, and they may be exposed to rumors and panics, it is particularly important that they receive accurate, up-to-date information on safety and health issues. Employees also need detailed information on company policies and procedures for working in the new environment, and open communication channels to company officials to help resolve personal and work-related issues in high-stress situations.
  • Security and Connectivity - Enterprises must plan to provide secure and reliable access to corporate networks for employees who work in their homes, hotels, or other remote locations. Administrators must have a plan for distributing software to remote computers, ensuring security on computers outside of the corporate firewall, and providing backup and data encryption capabilities to mitigate the risk of mobile devices with sensitive data being lost or stolen.
  • Collaboration and Re-Engineered Processes - Planners and developers must re-engineer business processes so they can continue without face-to-face interaction between employees.

 

- more info


Business continutiy defined

Disaster Recovery Plan Template
In the simplest of terms, it is good business for a company to secure its assets. CIO under the direction of CEOs and enterprise shareholders must be prepared to budget for and secure the necessary resources to support business continuity.

It is necessary that an appropriate administrative structure be created to effectively deal with crisis management. This will ensure that all concerned understand who makes decisions, how the decisions are implemented, and what the roles and responsibilities of participants are. Personnel used for crisis management should be assigned to perform these roles as part of their normal duties and not be expected to perform them on a voluntary basis. Regardless of the organization - for profit, not for profit, faith-based, non-governmental - its leadership has a duty to stakeholders to plan for its survival.

OrderDownload Table of Contents

With the explosion of technology into every facet of the day-to-day business environment there is a need to define an effective infrastructure to support operating environment; have a strategy for the deployment and technology; and clearly define responsibilities and accountabilities for the use and application of technology.

The template comes as both a WORD document utilizing a CSS style sheet that is easily modifiable. 

- more info