Essential tips for a successful disaster recovery plan

November 2019 Security Services & Risk Management

Byron Horn-Botha, lead: Arcserve Southern Africa Channel and Partnerships, says that there is no excuse for not building a successful DR plan at a time when tolerance for critical application downtime is rapidly dwindling. “Today, a tolerance of less than fifteen minutes is not uncommon. With availability requirements like that, companies are pressured to get it right,” he says.

Building a successful DR plan requires active participation across all business units, so that everyone at the table has a clear understanding of both data risk and expectations for recovery.

“The right resources and technology to deliver against recovery objectives have their place, of course, but without a foundational knowledge, businesses can end up guessing and that can translate into catastrophe,” he says.

The following highlights some of the key elements of Arcserve’s recommended DR planning process.

1. Set recovery expectations

We live in a world where customers expect data and applications to be available anytime, anywhere, and with touch-of-a-button ease. Furthermore, there’s an expectation that if something goes wrong, recovery can happen swiftly, and without data loss.

But this is not always the case and it’s a conversation companies should be having regularly across their business units. It’s crucial that everyone understands what the organisation wants versus what can be delivered.

2. Document business objectives and availability requirements

Business objectives and the criticality of the data and applications being protected in the organisation must be documented.

To create an effective business continuity and disaster recovery (BCDR) plan, it is essential to be intimately familiar with the organisation so that you can determine an acceptable level of risk. This can only be achieved through engagement across the company, which will determine the actual amount of downtime that is sustainable for each system and application.

Then it is necessary to identify interdependencies to ensure no single piece of the DR puzzle has been neglected. This means mapping out how data flows from one application to the next and facilitates a clearer picture of what needs to be protected. It also underscores the level of availability with a view to spotlighting what applications in the value chain cannot be recovered with the requisite speed necessary to support another critical application.

3. Think beyond costs

Getting buy-in for infrastructure improvements, given the competing demands for business investment, can be difficult. It is crucial to discuss any discrepancy between the cost of a company’s DR solutions, which are recurring, versus the loss expectancy – should systems go down for an extended time, or be lost entirely. The improvement of IT infrastructure as a cost must be considered as an ongoing investment in the health of the organisation.

4. Test the reliability of the DR solution

Testing the recoverability of critical apps should be done consistently. DR testing really needs to be a continuous effort, so the organisation is confident with both recovery points and times that can be achieved. This is where a backup and recovery solution that offers automated, application-level testing capabilities and reporting becomes critical.


Byron Horn-Botha.

5. Test the disaster preparedness of your people

Of course, automated testing covers the technical component of your DR plan but it would be unwise to rely solely on automated reports. The value of a full DR drill is that it illuminates how people behave, and identifies which processes work and which don’t. It also helps to verify whether or not these processes have been fully documented.

6. Is your DR plan up to the task?

Ransomware only represents one of many threats that must be considered when creating a DR plan, but the likelihood of infection – a near certainty now – is changing the game. As risks of ransomware infection escalate, the importance of a thorough, effective, and rehearsed DR plan has never been more crucial.




Share this article:
Share via emailShare via LinkedInPrint this page



Further reading:

Employee screening trends
iFacts Security Services & Risk Management
Criminal record checks still the most popular background check conducted around the world, but global employee screening trends are changing according to iFacts.

Read more...
South African business readies for a journey to the cloud
Security Services & Risk Management
There is an increasing demand for cloud services in the country, driven by the need to use advanced technologies such as AI while also providing hybrid workers access to data, regardless of their location.

Read more...
What to do in the face of growing ransomware attacks
Technews Publishing Cyber Security Security Services & Risk Management
Ransomware attacks are proliferating, with attackers becoming more sophisticated and aggressive, and often hitting the same victims more than once, in more than one way.

Read more...
South Africa can accelerate its move to smart cities
Security Services & Risk Management
What global smart city leaders have in common is that they have built on, and developed existing infrastructure, transforming it iteratively; South Africa is well positioned to adopt this approach.

Read more...
Where does SA logistics stand as far as cybersecurity is concerned?
Logistics (Industry) Security Services & Risk Management
Lesiba Sebola, director of information technology at Bidvest International Logistics, says it is paramount to safeguard IT infrastructure given how central it has become to operations.

Read more...
The Deposita Protector 3000 d-s1
Deposita Security Services & Risk Management
The Protector 3000 d-s1, designed for medium-sized enterprises, improves the level of security at the business and helps optimise resources by streamlining cash-handling processes.

Read more...
Top fraud trends to watch in 2023
News Security Services & Risk Management
Even though financial concerns remain a significant obstacle for companies in implementing new anti-fraud technologies, 60% of businesses expect an increase in their anti-fraud technology budgets in the next two years.

Read more...
Be cautious when receiving deliveries at home
News Perimeter Security, Alarms & Intruder Detection Security Services & Risk Management
Community reports of residents being held up at their gate when collecting fast food deliveries at home are once again surfacing.

Read more...
Sasol ensures Zero Trust for SAP financials with bioLock
Technews Publishing Editor's Choice Cyber Security Security Services & Risk Management
Multi-factor authentication, including biometrics, for SAP Financials from realtime North America prevents financial compliance avoidance for Sasol.

Read more...
Protecting yourself from DDoS attacks
Cyber Security Security Services & Risk Management
A DDoS attack, when an attacker floods a server or network with Internet traffic to prevent users from accessing connected online services, can be costly in both earnings and reputation.

Read more...