Disaster Recovery (DR) aims to ensure the smooth continuation of business whenever the technology infrastructure that supports critical business functions fails, as a result of a natural or human-induced disaster event.
DR planning involves defining a set of policies, tools and procedures that seek to:
- prevent a disastrous event from occurring;
- enable the recovery or continuation of key IT systems whenever an event .
Disaster Recovery assumes that the primary infrastructure is not recoverable (at least for some time) and represents a process of restoring data and services to a secondary infrastructure, located in an alternative location.
A good disaster recovery plan should include:
- An inventory of the organisation’s technology infrastructure (hardware and software)
- A definition of the organisation’s tolerance to the unavailability of systems and data – i.e. whether and for how long can the organisation operate without access to systems and data
- Identification of who is responsible for what whenever a disastrous event takes place, including and an appropriate communication plan
- Making sure your service-level agreements (SLAs) with your IT service providers include adequate handling of disasters/emergencies
- Information on how to handle sensitive information.
Organisations should routinely test their DR plan by simulating a disastrous event so as to ensure that the disaster recovery measures are followed by individuals and the organisation as a whole.
As part of the Cyber Security Malta, Tech.mt collaborates with the Malta Information Technology Agency (MITA) and the Malta Digital Innovation Authority (MDIA) to deliver educational video episodes about Security in the Digital Economy towards a safer future.