This bundle will assist you to create a formal Disaster Recover Plan (DRP). The bundle contains all the templates you need to create a successful DRP - broken down into three steps:

• Business Impact and Risk Assessment
• DRP Document Creation
• Testing and Maintenance

1. Business Impact and Risk Assessment

The purpose of a Business Impact and Risk Assessment is to determine the approximate business value of IT assets, to assess the impact the loss of those assets would have on business units, and to assign recovery priorities to the assets. The Business Impact and Risk Assessment involves seven steps:

• Assess threats and risks.
• Assess data center vulnerabilities.
• Document DRP basics.
• Assign value to IT assets.
• Assign prioritization to assets.
• Determine costs versus risk tradeoff.
• Maintain risk plans.

When a Business Impact and Risk Assessment is completed, you will have a complete list of the risks specific to each IT asset, as well as risk reports and profiles for the business impact analysis. Consider revisiting your Business Impact and Risk Assessment annually.

Tools included in bundle:

• Asset Risk Report
• Call Tree
• Corporate Asset Inventory
• Data Center Risk Probabilities
• Data Center Security Audit
• Core Data Center Security Audit
• Disaster Recovery Planning Workbook
• Downtime Policy
• DRP Operational Analysis
• Migration Project ROI & Prioritization Tool
• Operational Analysis Summary
• Potential Risk Checklists
• Return on Security Investment Calculator
• Risk Analysis
• Risk Management Spreadsheet
• Risk Assessment & Review

2. DRP Document Creation

The purpose of this bundle is to assist you in creating the basis of the actual DRP document itself. Armed with the results of your business impact analysis and risk assessments, you are now ready for IT Continuity Plan Creation, which is comprised of four distinct steps:

• Set project scope.
• Create recovery objectives.
• Document the DRP.
• Communicate the plan.

Once complete, the plan should include all appropriate actions that must be taken if the DRP is ever invoked. After the plan has been created, it is very important to revisit and revise it at least annually.

Tools included in this bundle:

• Disaster Recovery Planning Workbook
• DRP Communications Plan
• DRP Publications Sign-Off
• DRP Team Build Sheet
• DRP Template
• Hot Site/Cold Site Selection
• Penetration Testing Checklist & Agreement
• Recovery Control Meeting
• Recovery Objectives Worksheet

3. Testing and Maintenance

There is a series of tasks that must be completed in order to keep the DRP current and actively maintained. Use three distinct steps:

• Coordinate DRP testing.
• Test restorability.
• Update and maintain the DRP.

The DRP should be a living document that is updated as the company's risk profile changes and as new threats emerge. After the plan has been created, it is very important to test, revisit, and revise your DRP at least annually.


Tools included in this bundle:

• Plan Testing and Maintenance