We accept

Rationale Of Catastrophe Recovery Planning IT Essay

  1. Minimizing potential financial loss
  2. Reducing disruptions to operations
  3. Providing an orderly recovery
  4. Now consider that FDU is in a very tight finances and does not have extra money. Our revenue is less than our expenditures. Therefore, we have been in a minus category. How can we justify spending additional funds to plan for a disaster which will probably never happen? (13 items)
  1. This question will involve determining functions from chapter 4.
  2. Explain the concept of "cloud computing". You could look this up on the Internet but your explanation must be written within your own words. Your answer must be substantive. (12 tips)
  3. Would "cloud processing" help or harmed in creating a DRP? Clarify your answer completely. Include in your answer a company's resources and employees. (13 details)
  4. This question entails establishing the disaster recovery team in section 2.
  5. Discuss thoroughly the types of team members that the catastrophe recovery team must have. Explain the function of every team member. (12 tips).
  6. Now, imagine we want to establish a disaster restoration team for FDU. We just have cash for three (3) individuals. How can you group the mandatory team members into the three positions? ( 13 points),
  7. This question includes identifying dangers and categorizing them from chapter 3.
  8. Explain the procedure and the necessity of identifying dangers and deciding how likely it is the fact the risk influence the business. Then list and describe about ten common dangers. (12 details)
  9. Now, identify at least ten hazards that are likely to impact FDU. For each risk think of a score system. Use H, M and L. H means highly likely, M means moderately likely and L means least likely. Explain and justify your ranking of every risk. (13 things)
  10. Event: Rating:
  11. Fire H
  12. Water logging or flooding M
  13. Theft L
  14. Intrusion L
  15. Human mistake M
  16. Software failures L
  17. Hardware inability L
  18. Power outage H
  19. Terrorist attack. L
  20. Network hacking H

The dependence on a disaster restoration plan can be justified on examining; What is a devastation? Thus the DR preparedness in an enterprise scenario often means a make or break situation where the lack of a backup plan may lead to a total wipe out of the business or corporation. A good example would be the recent catastrophe which took place in the Gulf of Mexico, and the unpreparedness's of BP not only harm the bottom type of BP through expenses which it incurred for the tidy up process but the additional money the federal government took from BP for the environmental cleanup work destruction that was done to the spot. The effects of the disaster didn't end there, and it also damaged the livelihood and business potential clients of the folks living over the seacoast and specially the effect on the angling industry. Thus the aforementioned example is although an extreme however the point is the fact that if there was a considerable DR plan in place the oil drip might have been fixed prior to the destruction became so critical. Thus a DR plan could turn out to be a critical part of the business which although is not needed on a regular basis but there's a definite dependence on it to maintain place.

Thus an organization's vital asset in any circumstance would be its data and therefore in order to protect its functionality in case there is a disaster, the business needs to put into action a disaster restoration plan. Especially in areas such as insurance, production, banking, federal, education, retail, IT companies and most small and medium enterprises the data performs a vital role in the functioning of the business and it needs to be secured and there must be an idea in place to recover from any kind of disaster. A disaster restoration plan developed for a corporation would certainly help the organization in preserving business continuity and would also cause avoidance to customers and business operations in general. A tragedy restoration plan when implemented would ensure the following:

Minimizing potential financial loss

In the function of a disaster implementing a disaster recovery plan would certainly decrease the financial loss to the business. For instance why don't we consider the area of banking and in case of a disaster such as an earthquake where the bank loses its only server, apart from the valuable data loss to the bank, it could also lead to a extent where the bank's share value may possibly also decline. Thus in order to reduce such potential monetary loss, we need to implement a tragedy restoration plan.

Reducing disruptions to operations

As a tragedy in most of the events contributes to damage that often leads to a collapse in the creation environment and therefore causes an interruption in the functions. To be able to beat this, the catastrophe restoration plan implements a technique that recognizes that in case there is a tragedy at least one of the development machines is safe and there is absolutely no interruption in the businesses.

Providing an orderly recovery

The disaster recovery plan also ensures that the info is recovered within an orderly manner as an orderly recovery of data is vital in establishments such as banking, insurance and retail as they include a series of orders which must be recovered in order of their occurrence in order to guarantee the integrity of the machine. In addition to the above mentioned reasons there are several other reasons which will make me support the reason why of utilizing the disaster restoration plan onto the average business. They can be the following:

Protecting the investments of the organization

Minimizing legal liability

Minimizing insurance premium

Decrease in terms of potential exposure to loss or other devastating outcomes

Reduction in the disruptions of day to day operations

Ensuring organizational stability

Now consider that FDU is in a very tight finances and does not have extra money. Our revenue is less than our expenditures. Therefore, we have been in a minus category. How can we justify spending additional funds to plan for a disaster which will probably never happen? (13 items)

FDU although a school can be viewed as to be a major business or service provider which offers its educational services to its customers (Students) and so it definitely needs to have a planned Disaster Restoration plan in place, even though the deficit in its financial costs is a concern but still the need for the DR plan cannot be stressed enough. First of all almost all of the university or college functions such as classes, supervision, security and such are highly reliant onto it and network based mostly infrastructure, as well as the data and information are stored and maintained on the network servers.

In a great world, and with endless costs, the IT planning team at FDU wish to spend significantly to make sure that employees, and customers will have access to business systems and important info and many organizations allocate significant servings with their IT spending every year to assure functional resilience. Yet, in the case of FDU which up till particular date except for the energy outage experienced in the wintertime of 2009-2010 probably has never experienced a natural devastation or a security risk, or human mistake, and thus there's a major struggle to justify spending on disaster recovery plan for the university.

But the Disaster recovery spending is insurance contrary to the risks of customer downtime, data damage, and business interruption in the same way life insurance, health insurance, and homeowners insurance are virtually a given, but it certainly is difficult to examine how much coverage will do, and exactly how much to spend. So as every organization is aware of it needs some level of protection, determining the extent to which to invest is always a challenge.

Furthermore as to the reasons FDU must consider implementing and putting a tragedy recovery plan set up is basically because as FDU is an educational institute which not only has its businesses at two different locations in New Jersey but it also has businesses in Vancouver, Canada. Also being the largest privately funded university in the status of NJ FDU it has a data source that has information on some a large number of students and alumni who are multiply all over the world. Moreover a few of its major services for the educational and also its administrative branches are located on the university systems and machines, which if influenced would critically have an effect on the power of the university or college to function and also it would lead to a long time in dealing with a major catastrophe or catastrophe.

Thus keeping because the objective critical areas of operation and also its foreign campus in Vancouver Canada FDU should ensure that the info of the students is safe in case there is an unexpected disaster. So to assist in determining and justifying how much disaster recovery spending is necessary, the IT team at FDU would should ideally perform a circumstance by circumstance risk research and then analyze those situations and execute a step wise evaluation:

To assess the downtime costs for critical business systems

Go to calculate the disaster dangers and the matching impacts

Compare different and alternate programs and then determine the great things about each suggested solution, and exactly how much spending will do.

Thus after an intensive analysis of all situations and possible benefits, and mitigating a significant amount of the chance, while have the ability to deliver a cost-effective solution. However, it is important to keep in mind that disaster recovery solutions are not decided on on ROI actions alone. It's extremely important to look at the financial and business impact of an potentially disastrous event. Understanding the type of the risks is crucial, and a good first step for determining the amount of safety needed, and demonstrating the business value of such an investment. While catastrophe recovery alternatives can be costly, the risks associated with not having the proper safety set up could be devastating for a corporation. Thus FDU is going ahead and buy a generalized DR plan where spending large sums in growing and implementation of your in house devastation recovery plan wouldn't normally be wise, particularly when there already are products and applications that are available in the market and that can be custom-made and also enhancements can be made together with those existing products with respect to the availability of cash.

Thus keeping because of the financial and the human resources that need to be allocated to the development of the disaster restoration plan, I would recommend the option of taking a pre designed catastrophe restoration plan with little alterations and enhancements as needed.

This question will involve determining functions from chapter 4.

Explain the concept of "cloud computing". You could look this up on the Internet but your explanation must be written within your own words. Your answer must be substantive. (12 tips)

Cloud computing will involve in providing hosted services over the Internet. These are broadly split into three categories:




The name was inspired by the cloud sign that is utilized to stand for the internet in flowcharts and diagrams. A cloud service has three different characteristics which it differentiates it from traditional processing. It really is sold on demand by minute or hour. It really is elastic-a end user can have as much as little of the service as they want at any moment and the service are completely supervised by the supplier. Improvements in virtualization and distributed computing and increased access to broadband Internet and an unhealthy economy has increase the interest in cloud processing.

Cloud computing is a concept where the network or services are delivered via a exclusive network and through the web. Under this idea the made the companies pay only for the time or the quantity of services which they actually utilize in the virtual network and so this amounts to large personal savings for companies both small and medium. The straightforwardness in cloud computing made it easy for individuals to put it to use without any knowledge or extra expenditures needed to be manufactured in order to maintain the services.

Cloud processing relieves the clients from having the need of owning a physical infrastructure such as servers and thus helps in reducing the money being committed to the infrastructure. The companies instead pay the amount to the third party whoorganizes and keep maintaining the cloud. As the above figure illustrates the cloud consists of infrastructure, and various nodes are using the infrastructure present in the cloud. Clients tend to be charged upon the services employed or on registration. Though it is determined by the third party about how precisely they impose their clients. As the peak time of access is often common, good response time is ensured by increasing the bandwidth principles. The major advantages in cloud computing include it being very cost effective as the price to company to make use of the infrastructure itself as service is very less when compared to that of building and developing one's own infrastructure. One more advantage which makes the idea of cloud processing feasible is confinement of personnel as the company would not need any data centers and so people keeping them. Thirdly the type of cloud being infinitely scalable makes it easy to expand and thus improve the resources.

As every strategy has some pros and cons, so does indeed cloud processing. In cloud computing as the users do not have physical space for storage the users need to totally rely on the 3rd party provider. This makes the 3rd party provider accountable for the integrity and security of the data. Another debate that has been strongly made is that this concept doesn't supply the user the liberty to install applications, though a significant part of the industry continues to be willing towards cloud processing.

Infrastructure-as-a-Service provides electronic server instances with original IP addresses and blocks of storage space on demand. Customers use the provider's request program interface to start, stop, gain access to and configure their online servers and storage space. In the enterprise, cloud computing allows a corporation to pay for only as much capacity as is needed, and bring more online when required. Because this pay-for-use model resembles just how electricity, fuel and drinking water are consumed; it is also referred to as utility processing.

Platform-as-a-service in the cloud is thought as a set of software and product development tools hosted on the provider's infrastructure. Creators create applications on the provider's program over the Internet. PaaS providers might use application program user interface, website portals or gateway software installed on the customer's computer. Make. com, (an outgrowth of Salesforce. com) and GoogleApps are types of PaaS. Some providers won't allow software created by their customers to be transferred off of the provider's system.

In the software-as-a-service, the vendor provides the hardware, the program product and interacts with the user via a front-end site. SaaS is a very extensive market. Services can be anything from Web-based email to inventory control and repository processing. As the service provider hosts both the application and the info, the end user is free to use the service from everywhere.

Would "cloud processing" help or harmed in creating a DRP? Clarify your answer completely. Include in your answer a company's resources and employees. (13 details)

Cloud computing is certainly a thought which would help the DRP being effective. Since the cloud computing brings the entire responsibility onto the 3rd party, who manages the complete infrastructure, it is his responsibility to ensure the safety of data. Thus the third party vendor needs to employ a highly efficient disaster restoration plan as the data responsibility of data of several consumer lay on him. Thus the idea of cloud computing though helps it be easy to control data at a centralized location; it creates it a lot more critical. There are several different systems an organization follows in order to identify assets, each company has its system to be able to recognize its assets. Some of the critical assets a company needs to identify are as following Hardware is the first type of asset one would identify in an organization. Along the way of developing a DRP, hardware investments such as machines are given the first desire in identification. Club code reading is one of the popular methods used in order to recognize the hardware belongings of the business. Whenever an procedure related to the hardware is conducted, the club code is read and an entrance is made in to the Meta data source. Software is the next type of advantage that is determined. Once the resources such as operating system, enterprise data source system are discovered important inside resources like the code segment are recognized. In case of a disaster the business often depends upon several software components that assist in recovering the devastation. Maintaining a listing of what applications are installed in something assist in recovering critical applications.

The next important advantage of a business would be the info as the whole functionality of a business would depend upon its data and in case there is a tragedy the most essential asset that needs to be recovered is the data. Another asset that could account in an organization will be the human assets which will be the employees employed in an organization. As the individual assets aren't like hardware or software they have a tendency to change and so the organization must retains it up to date of the employees working so that in case of a disaster, the info that is usually to be recovered is modified.

This question entails establishing the disaster recovery team in section 2.

Discuss thoroughly the types of team members that the catastrophe recovery team must have. Explain the function of every team member. (12 tips).

Disaster restoration planning team is the group accountable for developing a catastrophe recovery plan as well as the group that bears the duty of assisting and tests it before deployment. Thus depending on several factors the devastation recovery planning team that would have been designed to include people who could fulfill the key roles as stated below and therefore this would help in developing a competent disaster recovery plan.

The roles that must definitely be fulfilled in a tragedy recovery plan are restoration is that of a Manager, Facilities coordinator, Tech coordinator, Administrative planner, Network coordinator, Application planner and Computer Procedures coordinator. Though in these case, the lender is unable to allocate seven employees, thus these seven jobs would have to be fulfilled by the three people that we are available with. Though in practicality, it is quite impossible for a person to perform two roles successfully.

The above jobs and the tasks which would come along with the given assignments would be the following:

Recovery Administrator: Is somebody who is strong and proficient at both managerial and administrative responsibilities and also anyone who has a broad structured knowledge of hardware as well as software functions, which functional knowledge should not be limited by only the business enterprise functions of the business but likewise have specific knowledge platform related to devastation recovery operations. The recovery administrator will need to be a hands on person with good problem handling skills.

Facilities Coordinator: The skills level of the facilities coordinator are more or less similar to that of the restoration manager however in terms of control and managerial capacities the facilities coordinator is not really much responsible and needs to have more involved procedure with close monitoring of the teams and their progress.

Technical Planner: This position needs the individual to be very strong technical capabilities with almost in depth knowledge about different programs and also be able to communicate with technical engineers and technical staff with ease

Administrative Coordinator: This position the person must be well aware of the day to day business techniques and business business deal and he must have adequate understanding of all business functions.

Network Planner: This position the person requires to own extensive business skills in preserving and design of network systems and the person must have a good grasp on diagnosing and correction in network mistakes and problems. Most important is the power of the current network setup in case you need to to successfully replicate the prevailing network.

Applications Coordinator: This position needs the individual to be having and considerable knowledge of the prevailing applications used currently by the business enterprise and he should mainly have a very good knowledge of a few of the objective critical systems of the business such as accounts receivable, payroll etc. This person should have good knowledge in the deploying of systems and also experience of preserving these systems in proper performing order.

Computer Operations Planner: This position needs the individual to be proficient in your day to day operations of the systems and system software. Also he can skillfully re create development schedules and could be implement new schedules. Also the systems coordinator might he held responsible of fabricating a non permanent help desk regarding a tragedy.

Now, imagine we want to establish a disaster restoration team for FDU. We just have cash for three (3) individuals. How can you group the mandatory team members into the three positions? ( 13 points),

The Disaster recovery team at FDU would need to consist of energetic people who be able to multi task in pressure situations and also ones who've sufficient understanding of several critical facet of business.

Facilities planner is a posture that requires skills that are similar to that of a recovery manager. This role wants the completion of work as scheduled using little amount of resources combined with the responsibility of the design of requirements of a data-center. Thus this role of facilities coordinator may be assigned to the restoration director in this circumstance.

Furthermore because of the broad expertise of a manager which would certainly include his consciousness on your day to day procedures of business and also his ability to cope with people and also skilled technological individuals would qualify him for the role of Administrative coordinator.

The role of the Computer Functions coordinator who's skilled in daily operations of the system and also having the knowledge of the help desk support features could be assigned to 1 or two people. Also it could be looked at to take care that the individual has knowledge in the working of networks and so the same person could also be allocated the role of Network planner if there is lack of staff who could be allocated to such a team.

Since the role of complex coordinator demands a solid expertise in establishing user interface between applications developed on different interfaces, this person would definitely have knowledge in your day to day applications that are being used in the business. Thus the jobs of being a Technical coordinator and Applications coordinator could be designated to such a person and the planning process could be started.

Though the assignments could be given between three people, the limitation of work time availability of the other two different people to two or three hours a day would lead to a certain inability in developing a disaster recovery plan. Thus one of the positions mentioned only the positions of an Recovery Supervisor could be justified and two other positions could be justified up to a partial extent due to nature of the task being in your free time and also is determined by the employees skills establish and their own drive to be part of such critical teams.

This question includes identifying dangers and categorizing them from chapter 3.

Explain the procedure and the necessity of identifying dangers and deciding how likely it is the fact the risk influence the business. Then list and describe about ten common dangers. (12 details)

The aims of risk recognition are to recognize and categorize dangers that could affect the procedure of an organization and report these hazards. Proactive organizations identify risks in advance and analysis is performed based on the risk. Reactive organizations react after the problem has occurred and they'll try to mitigate the issue before it gets worse. A proactive group will chart out all the possible dangers the business would face in case a disaster occurs and it will be done systematically. This can help those to take immediate action when facing a serious disruptive event. Proactive organizations will have special devastation recovery team to recognize and analyze hazards; moreover they'll plot a possible solution if they are faced with those varieties of problems. On the other hand, reactive organizations will figure out ways to discover a solution to a problem that has recently occurred. So damage has occurred, plus they need to avoid most detrimental case cases. Reactive organizations also identify risk but it might not exactly be as comprehensive and more comprehensive like proactive organizations do since it is done at the last second. So risk id differs in proactive organizations and reactive organizations where time is a huge constraint for the reactive organizations to analyze and make decisions. Organizations differ in the speed of which they respond to organizational problems, even when they have similar task surroundings. A proactive corporation engages in decision making and information gathering whenever possible. A reactive firm waits until if there is a compulsion to gather information and decision making. Proactive and reactive organizations spend the same timeframe on a single search. The decision between these two organizations is based on their coordination. Proactive organizations react to organizational problems faster than reactive organizations.

The consequence is that proactive organizations outperform reactive organizations. Proactive organizations are more vigorous; more well prepared more cooperative and has better performers. It's important that organizations make exact and well-timed decisions during disaster. In many cases time pressure triggers errors anticipated to lack of information. When time is short proactive organizations have edge because they are prepared and prepared to make a decision. It really is a downside in reactive company that important time is spent in problem handling and decision making. However when timing is not a important factor, reactive business can solve their problems more financially as they need less training and lower information control costs. There are many factors that could help determine whether an organization should be proactive or reactive such as job environment, stress, and organizational design. The result of your energy pressure is essential in proactive and reactive corporation. Proactive organizations treat their data such as a corporate advantage. They think globally across the business, and act collectively as a unified group. Moving to the proactive stage is very hard since it not the technology that can bring on inability. But, it's the people, politics, and cultural shifts that can make or break a proactive business. The organization can concentrate more on process because data is completed and monitored.

Being proactive or reactive will depend on potential business strategy predicated on the situation. Proactive means taking steps to contain situations for the long term. It calls for that you need to analyze the problem completely and then identify alternatives that are suitable for the organization.

The most popular risks which would warrant a tragedy Recovery plan are:


Water logging or flooding



Mal intent

Human error

Software failures

Hardware failure

Power outage.

Terrorist invasion.

Network hacking.

Now, identify at least ten hazards that are likely to impact FDU. For each risk think of a score system. Use H, M and L. H means highly likely, M means moderately likely and L means least likely. Explain and justify your ranking of every risk. (13 things)

The risks experienced by FDU are as follows:

Event: Rating:

Fire H

The flames is a significant hazard and thus it could arise at any time and when it occurs and destroy whole infrastructure would define it as a major disaster.

Water logging or flooding M

In case of drinking water logging or flooding the equipment might get afflicted depending on its location and the sort of water risk thus this might be a modest to low level hazard. Recently two days and nights back some cities in north NJ were evacuated as a result of flooding and normal water levels were greater than normal.

Theft L

Theft is very less likely but nonetheless is a distant possibility and thus it is given a rating of least likely.

Intrusion L

Intrusion could be for any purposes, and be done by a disgruntled staff or any person who is seeking to get back again at the College or university or such thus the threat degree of least likely.

Human mistake M

Human error is also a likelihood even though the employees know their work very well and are well been trained in all systems and techniques, but nonetheless some possible problem or fault could jeopardize the system therefore this event threat level is also average to not as likely.

Software failures L

Software failures are extremely much a likelihood although most systems are thoroughly tested still there are a few remote chances of developing a S/w failure, thus the Threat degree of least likely.

Hardware inability L

Hardware failures although are not everyday occurrences but still there's also possibilities of creating a hardware failure gives it a threat degree of least likely.

Power outage H

Even it's less likely to have an electric outage in NJ but it happened before. I remember last winter surprise back in 2009 many metropolitan areas were out of electric for few days even people got to stay at hotels. That influenced the FDU because they be based upon electric for classes, computer's labs, machines and buildings. It was inconvenience for everybody. Also this aspect might join my next point which is the terrorist invasion.

Terrorist attack. L

When the country declares a terrorist assault it is important to turn off everything for everyone's safeness. It's less inclined to happen to the school but we have to consider that because our company is near to NY. I also remember an accident back 2005 when a power outage happened because of problems in electric company's computer system. It lasted for almost 40 or 50 min. but the intimidating thing it was not only NJ but all the areas from east coastline to the west. So people start stress and chaos because these were thinking these were under strike.

Network hacking H

The network of the college or university is very important. So it's highly recommended to safeguard the network from any intervenes inside or outside the university. For instance pupil can hack the databases and change their grades or just make problems for this data so we should take this subject in concern.

More than 7 000 students trust us to do their work
90% of customers place more than 5 orders with us
Special price $5 /page
Check the price
for your assignment