News for the Disaster Recovery Planning Template

The Disaster Recovery Planning Template News feed is an XML news feed that you can subscribe to and re-publish on your web site or blog. The only requirement that you need to meet is that the feed is included with no modifications and that the links within the feed are retained as is.

If you wish to subscribe to this news feed the option that you have is:

  • Disaster Recovery Planning Template News Feed

  • Chief Data Officer plays a key role in Disaster Recovery Planning

    DRP Template and Security Manuual Template

    Chief Data Officer establishes the framework for Disaster Recovery and Business Continuity Planning

    Chief Data Officer Job DescriptionCDO is responsible for the adoption and operation of data across the entire business. As with most senior executive titles, the responsibilities are set by the organization's board of directors or other authority, depending on the organization's legal structure. The CDO is responsible for user data experiences across the entire enterprise and its operations.

    For the CDO, data assets are the focal point for standardization within the enterprise.  As such, it is extremely important to the enterprise's current and future business operations.  The Chief Data Officer (CDO) ensures the continued success of these areas while simultaneously minimizing costs and maximizing equipment and employee performance.

    Read On...  Order Chief Data Officer Job Description

    - Chief Data Officer plays a key role in Disaster Recovery Planning


    Disaster Recovery Best Practices

    CIOs and management executives say they have disaster recovery and business continuity under control

    Best Practices - Top 10 - Janco has found that successful organization typically follow or have implemented these 10 best practices.

    1. Have management communicated that disaster recovery is not a tactical IT project but as a strategic IT asset.
    2. Create a disaster recovery and business continuity process that is integrated into the organization
    3. Allocate costs associated with the disaster recovery business continuity plan as part of the base overhead so that costs are distributed across the entire organization
    4. Treat disaster recovery and business continuity as "mission critical" for cost and staff allocations
    5. Establish metrics for the process and timing of recovery events
    6. Test the plans at least once every six months or whenever there is major enhancement to the enterprise's computing or operational infrastructure
    7. Monitor how other enterprises and your competitors are faring after and event occurs
    8. Quarterly review you media communication protocol for who says what when to whom when an event occurs
    9. Pool your assets and personnel to provide resilience capabilities for interconnected systems or collaborative technologies such as payments or check processing.
    10. Test the back-ups (at least quarterly) so that what is taken is what is needed for recovery and that it meets your recovery performance metrics.

    Read on  Order DRP  DRP Sample

    - Disaster Recovery Best Practices


    ISO 27002:2022 governance model changes

    ISO 27002:2022 changes to ISO 27002:2013

    ISO 27002:2022 IT Governance InfrastructureThe 2022 version of the Standard is significantly longer than the 2013 version.

    • The title has been modified;
    • Lists 93 controls (against the 114 ones of the previous version);
    • Controls are grouped into 4 themes rather than 14 clauses;
    • New controls have been added; and
    • Controls now have five types of attribute

    Rather than the 14 sections of ISO 27002:2013, ISO 27002:2022 now has 4 sections and two annexes:

    • Organizational controls (clause 5): Section contains all controls related to various organizational issues, comprising 37 controls.
    • People controls (clause 6): Section focuses on controls related to human resources security, comprising 8 controls.
    • Physical controls (clause 7): Section focuses on controls related to the physical environment, comprising 14 controls.
    • Technological controls (clause 8): Section focuses on controls related to technological solutions, comprising 34 controls.
    • Annex A - Using attributes: Annex A provides a matrix of all the new controls, and it compares their attributes and provides suggestions on how the controls might be used according to their attributes.
    • Annex B - Corresponds with ISO/IEC 27002:2013: Annex B provides a mapping between controls from this version and the controls from the previous edition.

    Read on IT Governance

    - ISO 27002:2022 governance model changes


    IT Governance Infrastructure addresses DR/BC

    IT Governance InfrastructureIT Governance offering helps to implement Best Practices

    The template covers everything from the basics to the organizational inter-relationships. Included in the template are:

    • Strategy and Charter Statement of Authority - Includes not only CIOs but also an IT Management Council (Steering Committee) and functional group leaders.
    • IT Management Structure - Organizational approaches, roles and responsibilities for both centralized and de-centralitized organizations.
    • Compliance - Objectives and responsibilities for IT, users, and auditors
    • Personnel Practices - Everything in the employment life-cycle
    • ERP and Omni Commerce - Strategy and best practices defined
    • Controls - Definition of types and risk analysis
    • Application Development Standards - Includes quality assurance requirements
    • Backup and Recovery - Strategy and process alternatives
    • Disaster Recovery and Business Continuity - Includes critical function analysis
    • Security - Road map to how and what including appropriate management actions
    • Access Control - Including separation of duties and definition of least privilege
    • Server and Data Center Facility Requirements - Best practices to protect the physical assets
    • Technical Guides including: HIPAA Audit Program; ISO Security Audit Checklist; CIO job description; Security Management Compliance Checklist; and much more.

    Read On

    - IT Governance Infrastructure addresses DR/BC


    Disaster Planning Business Continuity fails after cyberattack

    Disaster Planning Business Continuity fails - cyberattack forces company to close its doors

    business continuity and securityAn Arkansas-based telemarketing closed its doors before a holiday due to a cyberattack.  Over 300 employees were let go and told to find new jobs. The primary casuse was that business continuity and diaster recovery efforts didn't go according to plan following a ransomware attack that took plas two months earlier.  

    Employees of the firm were notified of the decision just two days before a holiday, via a postal letter sent by the company's CEO.

    Local media reported, employees had no idea the company had even suffered a ransomware attack, and the layoffs were unexpected, catching many off guard.

    Approximately two months ago the company's servers were attacked by malicious software that basically held them hostage.  When the ransom was paid to get our systems back up and running, business continuity plan was not able to get them backup and running.

    Order DRP BCP Security Bundle Download Sample

    - Disaster Planning Business Continuity fails after cyberattack