Project 3 Task 2
Dennis Thomas
Mr. Hale
IS3110
PROJECT 2 TASK 3: DISATER RECOVERY PLAN
Step One - Organize the Project Appoint coordinator/project leader, if the leader is not the dean or chairperson.
1. Determine most appropriate plan organization for the unit
2. Identify and convene planning team and sub-teams as appropriate (for example, lead computer support personnel should be in the team if the plan will involve recovery of digital data and documents).
3. At the unit level
a. scope - the area covered by the disaster recovery plan, and objectives -
b. assumptions
4. Set project timetable
5. Obtain approval of scope, assumptions and project plan, if the leader is not the administrator.
Step Two – Conduct Business Impact Analysis
In order to complete the business impact analysis, most units will perform the following steps:
1. Identify functions, processes and systems
2. Interview information systems support personnel
3. Interview business unit personnel
4. Analyze results to determine critical systems, applications and business processes
5. Prepare impact analysis of interruption on critical systems
Step Three – Conduct Risk Assessment
1. Review physical security (e.g. secure office, building access off hours, etc.)
2. Review backup systems
3. Review data security
4. Review policies on personnel termination and transfer
5. Identify systems supporting mission critical functions
6. (Such as flood, tornado, physical attacks, etc.)
7. Assess probability of system failure or disruption
8. Prepare risk and security analysis
Step Four - Develop Strategic Outline for Recovery
1. Assemble groups as appropriate for:
Hardware and operating systems
Communications
Applications
Facilities
Other critical functions and business processes as identified in the Business Impact Analysis
1 For each system/process above quantify the following processing requirements:
Light, normal and heavy processing
Mr. Hale
IS3110
PROJECT 2 TASK 3: DISATER RECOVERY PLAN
Step One - Organize the Project Appoint coordinator/project leader, if the leader is not the dean or chairperson.
1. Determine most appropriate plan organization for the unit
2. Identify and convene planning team and sub-teams as appropriate (for example, lead computer support personnel should be in the team if the plan will involve recovery of digital data and documents).
3. At the unit level
a. scope - the area covered by the disaster recovery plan, and objectives -
b. assumptions
4. Set project timetable
5. Obtain approval of scope, assumptions and project plan, if the leader is not the administrator.
Step Two – Conduct Business Impact Analysis
In order to complete the business impact analysis, most units will perform the following steps:
1. Identify functions, processes and systems
2. Interview information systems support personnel
3. Interview business unit personnel
4. Analyze results to determine critical systems, applications and business processes
5. Prepare impact analysis of interruption on critical systems
Step Three – Conduct Risk Assessment
1. Review physical security (e.g. secure office, building access off hours, etc.)
2. Review backup systems
3. Review data security
4. Review policies on personnel termination and transfer
5. Identify systems supporting mission critical functions
6. (Such as flood, tornado, physical attacks, etc.)
7. Assess probability of system failure or disruption
8. Prepare risk and security analysis
Step Four - Develop Strategic Outline for Recovery
1. Assemble groups as appropriate for:
Hardware and operating systems
Communications
Applications
Facilities
Other critical functions and business processes as identified in the Business Impact Analysis
1 For each system/process above quantify the following processing requirements:
Light, normal and heavy processing