Académique Documents
Professionnel Documents
Culture Documents
BCDR Plan
Alyssa Evans
University of Advancing Technology
BCDR PLAN 2
Table of Contents
Company Information ..................................................................................................................... 4
Executive Summary ........................................................................................................................ 4
Risks................................................................................................................................................ 5
QAD Business Impact Analysis...................................................................................................... 5
Mitigation Strategies ....................................................................................................................... 6
Cost of Downtime ........................................................................................................................... 6
Cost per Day of Downtime ............................................................................................................. 7
Cost to Recover ............................................................................................................................... 7
Insurance Policy .............................................................................................................................. 7
Potential Insurance Gaps................................................................................................................. 7
Contacting Insurance Provider Checklist........................................................................................ 8
Memo to Task Coordinator ............................................................................................................. 8
Resources ........................................................................................................................................ 8
Alternative Work Site Procedures .................................................................................................. 9
Notifying Crisis Communication Command Center..................................................................... 13
Communication Plan Objectives................................................................................................... 14
Distribution List ............................................................................................................................ 14
Legal Constraints .......................................................................................................................... 14
Communication Template ............................................................................................................. 14
Organizational Chart ..................................................................................................................... 15
Employee Status Assessment ........................................................................................................ 16
Vendor List ................................................................................................................................... 16
Emergency Response Organizations............................................................................................. 16
Disaster Recovery Specialist Checklist ........................................................................................ 17
Supplier Checklist ......................................................................................................................... 17
Customer Checklist ....................................................................................................................... 17
Maintaining the Plan ..................................................................................................................... 18
Retaining Members of the Original Planning Team ..................................................................... 18
Reviewing and Keeping the Plan Up-to-Date ............................................................................... 18
How to Stress Plan’s Importance .................................................................................................. 18
Plan Distribution ........................................................................................................................... 18
BCDR PLAN 3
Conclusion .................................................................................................................................... 19
BCDR PLAN 4
Company Information
Company Name: Don’t Die LLC
HQ Location: 2594 Griffin St., Phoenix, AZ 85034
Production Location: 982 Dye St., Mesa, AZ 85225
Revenue Model: Don’t Die LLC generates its revenue through the production and selling
of stuffed animals and pillows.
CEO & Founder: Laurie V Watkins
BCDR SMEs:
Departments:
Administration Manager: Jennifer C. Hannon
Sales Manager: Michael A. Williams
Manufacturing Manager: Maritza I. Harris
Research & Development Manager: Katherine J. Bowman
Maintenance Manager: Darlene J. Vanhorn
Advertising Manager: Eric V. Thornton
Shipping Manager: James M. Baker
Purchasing Manager: Alexander M. Martin
Security Manager: Ana R. McGinnis
IT Manager: Heather T. Hernandez
Executive Summary
Very few organizations take the time and effort to implement and test their operational
contingency strategies in the face of a disaster. To minimize of the potential cost of downtime
from lack of recovery Don’t Die LLC has taken extra steps to prepare in the event of an
unknown disaster.
In this plan, all operational critical functions have been identified and are redundant in the
various scenarios of the disaster recovery strategy design. Don’t Die LLC have several operating
facilities that can be used in a critical crisis situation. The recovery strategy includes a recovery
center with previously identified critical workstations, so employees and staff continue critical
operations.
It is recommended that Don’t Die LLC implements a warm site or hot site that will have an
initial cost ranging from $175000 to $250000, but will save the company $330200 per day it
would take to bring a cold site to normal operations.
BCDR PLAN 5
Risks
Flash floods
Forest fires
Tropical storms
Tornados
Wind/Dust storms
Earthquakes
Armed attacks
Cyber attacks
Fire
Power outages
Transportation attacks, accidents, and/or failures
Minor intrusion
Major intrusion
Broader network infrastructure impaired
Protests
Civil disorder, rioting, and unrest
Product tampering
Embezzlement, larceny, and theft
Extortion
Highway collapse or major accidents
Pipeline collapse or accident
Infrastructure accidents and failures
Gas
o Outage, explosion, evacuation, collapse of system
Water
o Outage, contamination, shortage, collapse of system
Sewer
o Stoppage, backflow, contamination, collapse of system
Information system infrastructure
Internet infrastructure outage
Communication outage
Major service provider outage
Systems failure
Power grid or substation failure
Nuclear power facility incident
Building collapse
2. Loss of power would result in no productivity meaning that there will be no new products
to be produced during that downtime as well as little to no way to communicate to all
customers that would be affected until it is too late.
3. Loss of communication would be inconvenient, but would not completely halt
production. Orders previously placed can be produced in the time communications are
down/being worked on.
4. Loss of information system and internet infrastructure could result in limited productive
due to lack of communication to the outside as well as possibly being unable to access
previous orders
5. Cyber attacks could limit the access of employees who need to be able to communicate
with those outside the company as well as those who accessing the network remotely
depending on the attack. It could also result in loss of customers if the situation is not
handled appropriately.
6. Loss of water would inconvenience workers, but would otherwise not majorly affect
overall productivity
7. Embezzlement and actions similar will result in the company losing revenue
Mitigation Strategies
Have backup locations listed as well as plans in place in case evacuation is necessary
to reduce possible hazards to employees
Have backup generators charged up and available in case power is lost
Consider switching to completely solar power to limit power loss
Ensure at least managers have a cell phone that is capable of email as well as
international communication if necessary
Have backup sites with replacement equipment
Have a team dedicated to incident response as well as monitoring for cyber attacks
Attempt to keep employees happy and feeling appreciated
Have production print out orders for the week in case of system failures
Cost of Downtime
The electricity is down for 2 days
o $48400
The server has crashed but there was a backup made 1 hour prior to the crash (20 GB of
data)
o $36000000
The customer order site was down for 2 days
o $42530
The delivery trucks are 1 day late to pick up shipment
o $2000
The supply trucks mixed up deliveries
o $6000
5000 stuffed animals had to be recalled after causing health issues
BCDR PLAN 7
o $100000
Company was victim to phishing attack
o $24000
Business must be relocated to new building after an earthquake
o $30000
There was a fire at HQ damaging all of the computer present (50)
o $55068
20 Employees go on strike for 2 weeks
o $21020
Cost to Recover
Reenter Accounting $ _19000000_
Reenter Data and Systems Recovery $ _5000000_
Law Suits from Clients$ __43000___
Lost reputation $ ___2000___
Insurance Policy
Insurance Carrier: Insureon
Contact Information: 800.688.1984
Estimate: $1.36 million
Assessment of Damage and Potential Insurance Coverage:
Revenue
Day-to-day expenses
Relocation
Rent
Employee Salaries
Taxes
Loan Payments
Resources
Computer Equipment
o Desktops
o Laptops
o Mice
o Keyboards
o Monitors
Communication Links
o Internet
Communication Equipment
o Cell phones
o Landlines
BCDR PLAN 9
Chairs
Computers
Keyboards
Mice
Phones
o Executive Summary: This backup site for either location is good for having a new
location to go to with all of the equipment and resources setup, but will not have
all the necessary data available upon arrival. It will take __ hours to get all data
restored, but work can resume within the first hour, but this will be a more
expensive site due to it being mostly operational while the original site is
operating.
Hot Site Backup
o HQ Location: 3077 Crowfield Rd, Phoenix, AZ 85032
Equipment and Other Resources Needed
Power, Internet, Water, and Phonelines are Setup
Desks
Chairs
Computers
Keyboards
Mice
Phones
Printers
o Production Location: 4772 Elmwood Ave., Mesa, AZ 85205
Equipment and Other Resources Needed
Power, Internet, Water, and Phonelines are Setup
Material Cutter
Cotton Stuffer
Product Press
Product Sealer
Kiosks
Printers
Desks
Chairs
Computers
Keyboards
Mice
Phones
o Executive Summary: This backup site for either location is good for having a new
location to go to with all of the equipment and resources setup and fully
operational, but will be a very costly site due to it being fully operational while
the original site is operating. This also means that there will be no downtime
between locations beyond traveling to the new location.
BCDR PLAN 12
Phones
Printers
o Production Location: 4772 Elmwood Ave., Mesa, AZ 85205
Equipment and Other Resources Needed
Power, Internet, Water, and Phonelines are Setup
Material Cutter
Cotton Stuffer
Product Press
Product Sealer
Kiosks
Printers
Desks
Chairs
Computers
Keyboards
Mice
Phones
o Executive Summary: This backup site for either location is good for having an
exact copy of the original site that can be operating in real-time. This will be
costly to have operational with the price similar to the original location. This will
have lower downtime mainly relying travel time between locations and will have
all necessary data available fairly current.
o Email: demaita@azdema.gov
o Address: 5636 E McDowell Rd Bldg. M5101, Phoenix, AZ 85008
Distribution List
Distribution Alternatives
o Company Cellphones
o Fax
o Automated Messages
Contacts Needed
o Administration Manager: Jennifer C. Hannon
Phone: 602.278.5360
Email: jhannon@dontdie.com
Location: 2594 Griffin St., Phoenix, AZ 85034
o IT Manager: Heather T. Hernandez
Phone: 602.356.1323
Email: hhernandez@dontdie.com
Location: 2594 Griffin St., Phoenix, AZ 85034
Legal Constraints
CAN-SPAM Act: Establishes requirements for commercial messages, gives recipients the
right to have companies stop emailing them and the penalties for violations.
Telephone Consumer Protection Act: Restricts telephone solicitations and the use of
automated telephone equipment.
Communication Template
Disaster Declaration Statement:
Dear __,
BCDR PLAN 15
Sincerely,
Employee Name
Employee Title
Don’t Die LLC
Organizational Chart
Administration
o Manager: Jennifer C. Hannon
o Assistant Manager: Ricky T. Anderson
Sales
o Manager: Michael A. Williams
o Assistant Manager: Gloria J. Simeone
Manufacturing
o Manager: Maritza I. Harris
o Assistant Manager: Christy A. Spray
Research & Development
o Manager: Katherine J. Bowman
o Assistant Manager: Tony J. Padula
Maintenance
o Manager: Darlene J. Vanhorn
o Other: Winifred J. Sims
Advertising
o Manager: Eric V. Thornton
BCDR PLAN 16
Vendor List
Organic Cotton Plus
Cloud9 Fabrics
JOANN Fabrics and Crafts
Notions Marketing
Supplier Checklist
Status (e.g. Completed,
pending, or N/A)
Names and titles of employees who are authorized to work with
suppliers and service providers
Contact information and locations of suppliers and service providers
How product lines or services should be identified when contacting
suppliers and service providers
What to tell suppliers and service providers about disasters
What to tell them about recovery of operations
What suppliers and service providers should do if they need to
contact the organization during the disaster
Customer Checklist
Status (e.g. Completed,
pending, or N/A)
Names and titles of employees who are authorized to work with
customers
BCDR PLAN 18
Plan Distribution
Intranet
o Advantages: Ease of deployment, low costs, accessible by all employees and
business partners
BCDR PLAN 19
Conclusion
Taking the time to identify the risks, addressing the risks through criticality, mitigating those
risks by maintaining an alternate site to continue normal business operations after a disaster has
occurred, and implementing a plan that will evaluate and provide the contacts necessary to help
save the company $330200 per day it would take to bring operations back to normal.
BCDR PLAN 20
References
About the Agency. (2017, May 16). Retrieved October 15, 2017, from
https://www.fema.gov/about-agency
http://www.insureon.com/products/business-interruption-insurance
De Wet, J. (2013, February 22). The Financial Impact of Strike Actions. Retrieved October 1,
Evers, J. (2006, January 20). Computer crime costs $67 billion, FBI says. Retrieved October 1,
Fire/Smoke Damage Restoration and Repair. (2017, January 12). Retrieved October 1, 2017,
from http://www.improvenet.com/r/costs-and-prices/fire-damage-restoration
How Much Does a Desktop Computer Cost? (n.d.). Retrieved October 01, 2017, from
http://electronics.costhelper.com/computers-desktop.html
Hudson, M. (2017, June 9). How to Estimate Retail Store Rent Costs. Retrieved October 01,
Kauffman, B. (2013, February 26). Study on Estimating the Cost of Civil Litigation Provides
estimating-cost-civil-litigation-provides-insight-court-access
Nath, T. (2015, January 8). How Do Recalls Affect A Company? Retrieved October 1, 2017,
from http://www.investopedia.com/articles/investing/010815/how-do-recalls-affect-
company.asp
O'Neal, D. L. (n.d.). How to Calculate the Per-day Payroll Rate. Retrieved October 1, 2017, from
http://smallbusiness.chron.com/calculate-perday-payroll-rate-54026.html
BCDR PLAN 21
Perlin, M. (2012, September 17). Downtime, Outages and Failures - Understanding Their True
outages-and-failures-understanding-their-true-costs.html
Snedaker S., & Rima C. (2014) Business Continuity and Disaster Recovery Planning for IT
State of Arizona. (2016, August 09). Retrieved October 15, 2017, from
https://www.fema.gov/state-arizona