Incident Response Plan

Disaster Recovery Policy

As noted in step 2 of the preceding list, the DR team, led by the manager designated as the DR team leader, begins with the development of the DR policy The policy document that guides the development and implementation of DR plans and the formulation and performance of DR teams. soon after the team is formed. The policy presents an overview of the organization’s philosophy on the conduct of DR operations and serves as the guide for the development of the DR plan. The DR policy itself may have been created by the organization’s CP team and handed down to the DR team leader. Alternatively, the DR team may be assigned the role of developing the DR policy. In either case, the DR policy contains the following key elements:

• Purpose—The purpose of the DR program is to provide direction and guidance for all DR operations. In addition, the program provides for the development and support of the DR plan. In everyday practice, those responsible for the program must also work to emphasize the importance of creating and maintaining effective DR functions. As with any major enterprise-wide policy effort, it is important for the DR program to begin with a clear statement of executive vision.

• Scope—This section of the policy identifies the organizational units and groups of employees to which the policy applies. This clarification is important if the organization is geographically dispersed or is creating different policies for different organizational units.

• Roles and Responsibilities—This section of the policy identifies the roles and responsibilities of the key players in the DR operation. It can include a delineation of the responsibilities of executive management down to individual employees. Some sections of the DR policy may be duplicated from the organization’s overall CP policy. In smaller organizations, this redundancy can be eliminated, as many of the functions are performed by the same group.

• Resource Requirements—An organization can allocate specific resources to the development of DR plans here. While this may include directives for individuals, it can be separated from the previous section for emphasis and clarity.

• Training Requirements—This section defines and highlights the training requirements for the units within the organization and the various categories of employees.

• Exercise and Testing Schedules—This section stipulates the testing intervals of the DR plan as well as the type of testing and the individuals involved.

• Plan Maintenance Schedule—This section states the required review and update intervals of the plan, and identifies who is involved in the review. It is not necessary for the entire DR team to be involved, but the review can be combined with a periodic test of the DR plan as long as the resulting discussion includes areas for improving the plan.

• Special Considerations—This section includes such items as information storage and maintenance.

Listen webReader by ReadSpeaker

• Settings
• Reading LanguageAmerican English - Female - Selected American English - Male Australian English British English
• Read on Hover
• Enlarge Text
• Text Mode
• Page Mask
• Download mp3
• Help

Open/close toolbar