IT Contingency Planning: IT Disaster Recovery

SOUTHSIDEVIRGINIACOMMUNITYCOLLEGE
INFORMATIONTECHNOLOGY SECURITYPLAN
ITContingencyPlanning:ITDisasterRecovery Planning
DRPandCOOPPlanTesting
TheITDisasterRecoverytestplanincludesthestepstotesttheITDisasterRecovery Plan andCOOPrecoveryprocedurestominimizethedisruptionsofcriticalfunctions andthecapabilitytorecovercriticalITsystemsinaccordancewith COVITRM50101. Theoutcomemaycontributetovariousplansthatproperlyorganizetheresponse, recovery,andcontinuityactivitiesfordisruptionsaffectingtherelationshipbetweenIT systemsandbusinessprocessessupportedbytheITsystems. OncetheBusinessImpactAnalysisandRiskAssessmentprocessesarecomplete,the businessprocessesandsupportingITsystemshavebeenidentifiedalongwithsystem vulnerabilities,threats,andcurrentcontrols.Theorderofrestorationhasalsobeen identifiedintheseprocesses.TheITDisasterRecoveryTestPlaninvolvesprocedures usinginformationfromthetestresultstoensurethecontingencyplanisabletoaddress theriskscompletelyandeffectively. Therecoverytestplanwasdevelopedinconjunctionwith SouthsideVirginiaCommunity CollegeContingencyITDisasterRecovery andCOOPPlanstotesttherapidand organizedrecoverytothefullorpartialdestructionoftheCollege'sinformationtechnolo gycapabilities.Thepurposeoftestingistodemonstrate tobothmanagementand recoveryteamstheabilityofoneormorevitalbusinessprocessestocontinuefunctioning insidetheidentifiedtimeframepostabusinessinterruptionevent.Anexerciseisnota pass/failworkeffortbutanopportunitytoidentify vulnerabilitiesandgapsinyour recoveryplan. Resourcesthatcouldpotentiallybedestroyedorimpairedincludethefollowing: information,equipment,physicalspacehousingtheequipment,software,andpersonnel. Theimportanceofplanningfortheeventualityofsuchlossesisvitaltolimitingthe amountofdamage,decreasingthelengthofoutages,andloweringthecostofrecovery.
Assumptions
Thisplanwasdevelopedbasedonthefollowingassumptions: Oneofthebackupsiteswillsurvivethecontingency. Backupmediaanddocumentationwillbesecureatthesurvivingsite. PersonnelcanbemadeavailabletoimplementtheRecoveryPlan.
IntheeventoftotalorpartiallossoftheCollege'scomputerservicespersonnel,assis
tancewillbeavailablefromVCCSITSEnterpriseServicespersonneltoimplement theRecoveryPlan.Incaseofwidespreadregionaldisruptionsaccesstoemergency resourcesandpersonnelmaybeseverelylimited.
RecoveryTestPlans
NetworkInfrastructure:
CiscoequipmentcoveredunderSmartNet: TheSVCCnetworkinfrastructureequipmentiscoveredbytheCiscoSmartNet8x5x NBD.Thiscontractcoversanyhardwareproblemandpartswiththefollowingequipment (seeAttachmentC2.1). Inaneventofahardwarefailureofanyoftheabovementionedequipmentequipment, thefollowingprocedureisinitiated: IftheInternetisaccessiblegoto http://www.cisco.com/warp/public/687/Directory/DirTAC.shtmlandfollowthe directionsorcall 18005532447iftheInternetisunavailable.
OpeningaCase TheonlineTACCaseOpenTool(www.cisco.com/tac/caseopen)isthefastestwayto open P3andP4 (priority3and4)cases.Afteryoudescribeyoursituation,theTACCase OpenToolrecommendsresourcesforanimmediatesolution.Ifyourissueisnotresolved viatheseautomaticsolutions,yourcasewillbeassignedtoaCiscoTACengineer. For P1orP2(priority1and2)cases(whentheproductionnetworkisdownorseverely degraded)orifyoudonothaveInternetaccess,contacttheCiscoTACviatelephone. CiscoTACengineersareassignedimmediatelytoP1andP2casestohelpkeepyour businessoperationsrunningsmoothly. Toopenacaseviatelephone,useoneofthefollowingnumbers:

AsiaPacific:+61284467411(Australia:1800805227) EMEA:+3227045555 USA:18005532447
ForacompletelistingofCiscoTACcontacts,pleasevisit: http://www.cisco.com/en/US/support/tsd_contact_technical_support.html TACCasePriorityDefinitions Toensurethatallcasesarereportedinastandardformat,Ciscohasestablishedcase prioritydefinitions. Priority1(P1)Thenetworkis"down"orthereisacriticalimpacttoyour businessoperations.YouandCiscowillcommitallnecessaryresourcesaround theclocktoresolvethesituation. Priority2(P2)Operationofanexistingnetworkisseverelydegraded,or significantaspectsofyourbusinessoperationarenegativelyaffectedby inadequateperformanceofCiscoproducts.YouandCiscowillcommitfulltime resourcesduringnormalbusinesshourstoresolvethesituation.
Priority3(P3)Operationalperformanceofyournetworkisimpairedwhile mostbusinessoperationsremainfunctional.YouandCiscoarewillingtocommit resourcesduringnormalbusinesshourstorestoreservicetosatisfactory levels. Priority4(P4)YourequireinformationorassistancewithCiscoproduct capabilities,installation,orconfiguration.Thereislittleornoeffectonyour businessoperations.
TheSVCCCCOcontractinformationismaintainedbytheITNetworkAdministrators. ContacttheCiscoSalesRepresentativeatDimensionData,CynthiaReason(919) 7911088 cynthia.reason@us.didata.com andplaceorderforreplacementCisco equipment.Ciscowillusuallyovernightequipmentdamagedinacatastrophic event. DiDatawillsupplynetworktechnicians(atadditionalcost)whowillassistinthe installationandconfigurationofCisconetworkinfrastructureequipment. TheSVCCITNetworkAdministratorsmaintainabackupnetworkconfiguration ofeveryCiscodeviceontheSVCCnetwork.
TestPlan: Testisnotnecessaryduetocoverageofmaintenancecontracts howeverITstaffshouldmaintain,reviewandupdateallapplicable documentation.

CiscoEquipmentnotcoveredunderSmartNet: SomeCiscoswitches,CiscoIPphones,andCiscoWirelessAccessPointsarenotcovered undertheCiscoSmartNetagreement.TheSVCCITNetworkstaffmaintainsspareunits ofeachtypeofequipmenttoreplaceunitsthathavefailed.
TestPlan:ShutdownaCisco3500workgroupswitchinawiringcloset andreplaceitwithaspare3500switch.
ReplacementofCiscoEquipmentthatisdamagedordestroyedbyfire,flood, hurricane,earthquake,orduetotheft: TheCiscoSmartNetmaintenanceagreementdoesnotcoverequipmentstolenor 4
destroyedduetofire,flood,hurricane,earthquake,orbyanyotherexternalforce.In ordertorecoverfromsuchacatastrophicevent,SVCCITNetworkstaffwouldperform thefollowingsteps: Assessthedamageandtakeinventoryofwhatneedstobereplaced. Determineifthebuildingandcomputerroomorclosetisstillusable. Clearoutthedestroyedequipmentandpreparelocationforreplacement equipment. CalltheCOVDepartmentofTreasuryandcontacttheRiskManagementofficer tosubmitinsuranceclaim.Ph(804)7863152(selectoption1). ContacttheCiscoSalesRepresentativeatDimensionData,CynthiaReason(919) 7911088 cynthia.reason@us.didata.com andplaceorderforreplacementCisco equipment.Ciscowillusuallyovernightequipmentdamagedinacatastrophic event. DiDatawillsupplynetworktechnicians(atadditionalcost)whowillassistinthe installationandconfigurationofCisconetworkinfrastructureequipment. TheSVCCITNetworkAdministratorsmaintainabackupnetworkconfiguration ofeveryCiscodeviceontheSVCCnetwork.
TestPlan: Testisnotnecessaryprocedureasgivenabove. SystemServers:

ServerscoveredunderMaintenanceServiceAgreements: (SVCCdeviceswithfouryearonsitepartsandlabormaintenanceservicecontractlisted withthemanufacturer): Whenthemaintenanceservicecontractexpires,theserverswill bereplacedwithanewserverandanewfouryearmaintenanceservicecontract. (as practicableandasbudgetedfor) WhenanSVCCserverfailsduetoahardwareproblem,theSVCCITnetworkstaffwill callthevendorserversupporthotlineandprovidetheserversserialnumbertothe technicalsupporttechnician.Thereplacementpartwillbedeliveredthenextbusiness day.Theproductservicetechnicianwillbeonsitethenextbusinessdaytoinstallthe replacementpart.In mostcases,anSVCCITnetworkstaffmemberwillvolunteerto installthereplacementpart.
TestPlan: Testisnotnecessaryduetocoverageofmaintenancecontracts howeverITstaffshouldmaintain,reviewandupdateallapplicable documentation.

Replacementof Serversnotcoveredbyamaintenanceagreement,that aredamaged ordestroyedbyfire,flood,hurricane,earthquake,or duetotheft: Thevariousservermaintenanceagreementsanddonotcoverequipmentstolenor destroyedduetofire,flood,hurricane,earthquake,orbyanyotherexternalforce.In ordertorecoverfromsuchacatastrophicevent,theSVCCITstaffwouldperformthe followingsteps: Assessthedamageandtakeinventoryofwhatneedstobereplaced. Determineifthebuildingandcomputerroomorclosetisstillusable. Clearoutthedestroyedequipmentandpreparelocationforreplacement equipment. CalltheCOVDepartmentofTreasuryandcontacttheRiskManagementofficer tosubmitinsuranceclaim.Ph(804)7863152(selectoption1). Contactservervendor toplaceanordertoreplaceaffectedservers. TheSVCCITNetworkAdministratorwillinstalltheservernetworkingoperating systemandrestoretheserverconfiguration,applications,anddatafilesfromthe serverbackuptapesstoredinafireproofsafeonandoffcampus.
TestPlan: Shutdown aserverandconfigureaspareoneto takeitsplace. UserDesktops:

SVCCmaincampusandoffcampusDellworkstationscoveredundertheDell MaintenanceServiceAgreement: AnyDellworkstationcomputerthathasasystemhardwarefailurethatiscoveredunder the4yearDellMaintenanceServiceAgreement,willreceiveareplacementpartbythe
nextbusinessday.Whenan SVCCdesktopcomputer,coveredunderthe4yearDell MaintenanceServiceAgreementfailsduetoahardwareproblem,theSVCCITNetwork staff desktopstaffwillcalltheDellDesktophotlineat(800)2341490,providetheDell desktopcomputerservicetaxnumberandexpressservicecodetotheDellTechnical Supporttechnician.Thereplacementpartwillbedeliveredthenextbusinessday.The Dellservicetechnicianwillbeonsitethenextbusinessdaytoinstallthereplacementpart. Inmostcases,theSVCCITNetwork ServicesDepartmentdesktopstaffmemberwill volunteertoinstallthereplacementpart.
TestPlan: TestisnotnecessaryduetocoverageofDell4yearmaintenance contract.

SVCCmaincampusandoffcampusDellworkstationsnotcoveredundertheDell MaintenanceServiceAgreement: AnyDellworkstationcomputerthathasasystemhardwarefailureandisnotcovered underthe4yearDellMaintenanceServiceAgreement,willbeanalyzedbytheSVCCIT Network stafftodeterminetheextentofthecomputerproblem.Oncediagnosed,the hardwarereplacementpartwillbeorderedthroughtheDellCorporationPartswebsiteat www.dell.com.Replacementofthefailedcomponentscantakeuptooneweek. Typically,SVCCwillreplacedesktopcomputerswithinthreetofouryearsincompliance withtheusefullifedefinitionsofpersonalcomputerhardwareandsoftware recommendedbytheVCCSTechnologyCouncilandapprovedbytheAdvisoryCouncil ofPresidents.
TestPlan: ShutdownaDell classroom (orother)workstation and configureaspareworkstation totakeitsplace.

ReplacementofDellworkstationsthataredamagedordestroyedbyfire,flood, hurricane,earthquake,orduetotheft: TheDelldesktopmaintenanceserviceagreementdoesnotcoverequipmentstolenor destroyedduetofire,flood,hurricane,earthquake,orbyanyotherexternalforce.In ordertorecoverfromsuchacatastrophicevent,theSVCCIT NetworkServices Departmentwouldperformthefollowingsteps: 7
Assessthedamageandtakeinventoryofwhatneedstobereplaced. Determineifthebuildingandcomputerroomorclosetisstillusable. Clearoutthedestroyedequipmentandpreparelocationforreplacement equipment. CalltheCOVDepartmentofTreasuryandcontacttheRiskManagementofficer tosubmitinsuranceclaim.Ph(804)7863152(selectoption1). ContactDell Corporation andplaceanorderforthereplacedDellworkstations. Workstationswillusuallybedeliveredwithinonebusinessweek. TheSVCCITNetwork ServicesDepartmentdesktopstaffwillinstallthedesktop computersandrestorethedesktopconfiguration,applications,anddatafilesfrom theserverbackuptapesstoredonandoffcampus.
TestPlan: Testisnotnecessaryprocedureasgivenabove. TabletoptestingoftheDRPandCOOPplansinitiation:

PlantestingisacriticalelementoftheITdisasterrecoveryplan.Testingshouldbedone atleastonceayearandmoreoftenasnecessary.SVCCwilltesttheplanannuallybefore June15.ThevariousDisasterRecoveryTeamswillperformthetestingandtheresults willbereviewedbytheSVCCSecurityCommittee.Testingassistsinidentifyingand addressingdeficiencies.Testingalsohelpsevaluatetheabilityofrecoveryteamsto implementtheplanquicklyandefficiently.Thefollowingcomponentswill alsobe addressedduringtheSVCCITDisasterRecoveryPlaninitiation test: Testingcoordination andcommunication amongrecoveryteams. Testingnotificationprocedures. Validatingandupdatingvariousrecovery teamsinformation. Makerecommendationsforimprovementsasnecessary.
Thepurposeoftestingistodemonstratetobothmanagementandrecoveryteamsthe abilityofoneormorevitalbusinessprocessestocontinuefunctioninginsidethe identifiedtimeframepostabusinessinterruptionevent.Anexerciseisnotapass/fail workeffortbutanopportunitytoidentifyvulnerabilitiesandgapsinyourrecovery plan.
TestPlan: TabletopTestof theinitiationoftheDRPandCOOPplansas givenaboveresultstobemaintainedonproperformsasindicatedinthe individualplans.

IT Contingency Planning: IT Disaster Recovery

Uploaded by

Document Information

Original Title

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

IT Contingency Planning: IT Disaster Recovery

Uploaded by

Copyright:

Available Formats

SOUTHSIDEVIRGINIACOMMUNITYCOLLEGE

AsiaPacific:+61284467411(Australia:1800805227) EMEA:+3227045555 USA:18005532447

TestPlan: Testisnotnecessaryduetocoverageofmaintenancecontracts howeverITstaffshouldmaintain,reviewandupdateallapplicable documentation.

TestPlan: Testisnotnecessaryprocedureasgivenabove. SystemServers:

TestPlan: Testisnotnecessaryduetocoverageofmaintenancecontracts howeverITstaffshouldmaintain,reviewandupdateallapplicable documentation.

TestPlan: Shutdown aserverandconfigureaspareoneto takeitsplace. UserDesktops:

TestPlan: TestisnotnecessaryduetocoverageofDell4yearmaintenance contract.

TestPlan: ShutdownaDell classroom (orother)workstation and configureaspareworkstation totakeitsplace.

TestPlan: Testisnotnecessaryprocedureasgivenabove. TabletoptestingoftheDRPandCOOPplansinitiation:

Thepurposeoftestingistodemonstratetobothmanagementandrecoveryteamsthe abilityofoneormorevitalbusinessprocessestocontinuefunctioninginsidethe identifiedtimeframepostabusinessinterruptionevent.Anexerciseisnotapass/fail workeffortbutanopportunitytoidentifyvulnerabilitiesandgapsinyourrecovery plan.

You might also like