| Disaster Recovery /Business Continuity Test | | | | mass resignation or other form of industrial action. |
| Evidence Report | | | | |
| Assess the following five scenarios: | | | | Obtain answered to the following questions: |
| IT and Data communication loss - Scenario One | | | | |
| | | | | If the office is inaccessible, how far is the |
| This is a situation where you loose all IT and Data | | | | recovery site in kilometres? |
| Communications, IT Infrastructure, E-Mail Service, | | | | Is the recovery site fully equipped with stationery, |
| access to information stored electronically, IT | | | | telephones, printers, PCs, TVs, desks? |
| support service, inter organisation building | | | | Would it take less than one hour to retrieve |
| communications, other external communications, | | | | off-site copies of critical recovery data? |
| voice communications, fixed line (Internal (Private) | | | | Has all staff personal telephone numbers been |
| and PSTN (Public)) Telephone Services, mobile | | | | updated for call cascade? |
| telephone services. | | | | Can the recovery site give an assurance that |
| Building loss – Scenario Two | | | | separacy /diversity services are in place in the |
| This is a situation of unavailability/loss of part or | | | | wide area network? |
| one or more buildings which can occur through | | | | What is the organisation’s emergency |
| environmental incidents such as fire, water | | | | telephone number for staff to call? |
| damage, explosion etc. | | | | How effective is the call redirection? |
| Building Access Restrictions - Scenario Three | | | | Can the organisation confirm, where mirror |
| Normal access to buildings may be denied or | | | | systems are used, that backup devices and |
| restricted through a range of factors including the | | | | software are in place to manage backups from a |
| utility failure scenario, civil unrest in the area, police | | | | single replicated system when the primary has |
| cordons from terrorist incidents, building | | | | failed? |
| occupation, etc. Access to the organisation’s | | | | How long will it take to have recovery of all |
| building(s) may be: temporarily accessible but not | | | | aspects of critical IT systems and restoration of |
| usable, not accessible at all. | | | | connectivity to critical networks including tests of |
| Utility Failure - Scenario Four | | | | critical computer systems and associated |
| As the organisation is dependent on water, | | | | hardware in event of a disaster? |
| electricity, and gas utilities. If any of these fail | | | | Does the recovery site have a Disaster recovery |
| because of problems, then the affected building(s) | | | | plan? |
| could have to close (e.g. if there was no water a | | | | Confirm if the organization’s IT security |
| building may have to close on health grounds). In | | | | elements include the following elements: Firewalls, |
| this circumstance, it is likely (although not | | | | encryption, Anti-virus products |
| guaranteed) that temporary access would be | | | | Confirm if IT environment humidity, ventilation and |
| possible to retrieve equipment and documentation. | | | | air-conditioning are controlled. |
| Related to this utility failure scenario, the | | | | Confirm if IT environment is protected by fire |
| consequent effects could be lack of lighting, | | | | detection and suppression. |
| heating, and a usable physical access security | | | | Confirm if Power can be provided by generator(s) |
| system, thus rendering the building(s) unusable | | | | for at least three days using on-site stored fuel. |
| (although probably accessible temporarily). | | | | Confirm if physical access to critical areas and |
| Staff Unavailability - Scenario Five | | | | floors is restricted by guards’ presence. |
| Staff (including contract support, such as the | | | | The test result should be recorded to show |
| supplier of support service/helpdesk IT support | | | | whether everything worked as expected, and if |
| staff) may be unavailable for a number of | | | | it did not, what happened and why, and what |
| reasons, including: significant loss of life (e.g. | | | | deficiencies were noted in the plan and its action |
| through fire, explosion), widespread failure of | | | | task lists, supporting facilities, locations, etc. |
| public transport through a major incident or | | | | Record details of any revisions required to the |
| industrial action, adverse weather conditions, | | | | plan and/or supporting facilities, locations, etc. |
| widespread illness (e.g. an influenza epidemic), | | | | |