ntw440 Aevans Bcdrpfinal-2

BCDR PLAN 1
BCDR Plan
Alyssa Evans
University of Advancing Technology
BCDR PLAN 2
Table of Contents
Company Information ..................................................................................................................... 4
Executive Summary ........................................................................................................................ 4
Risks................................................................................................................................................ 5
QAD Business Impact Analysis...................................................................................................... 5
Mitigation Strategies ....................................................................................................................... 6
Cost of Downtime ........................................................................................................................... 6
Cost per Day of Downtime ............................................................................................................. 7
Cost to Recover ............................................................................................................................... 7
Insurance Policy .............................................................................................................................. 7
Potential Insurance Gaps................................................................................................................. 7
Contacting Insurance Provider Checklist........................................................................................ 8
Memo to Task Coordinator ............................................................................................................. 8
Resources ........................................................................................................................................ 8
Alternative Work Site Procedures .................................................................................................. 9
Notifying Crisis Communication Command Center..................................................................... 13
Communication Plan Objectives................................................................................................... 14
Distribution List ............................................................................................................................ 14
Legal Constraints .......................................................................................................................... 14
Communication Template ............................................................................................................. 14
Organizational Chart ..................................................................................................................... 15
Employee Status Assessment ........................................................................................................ 16
Vendor List ................................................................................................................................... 16
Emergency Response Organizations............................................................................................. 16
Disaster Recovery Specialist Checklist ........................................................................................ 17
Supplier Checklist ......................................................................................................................... 17
Customer Checklist ....................................................................................................................... 17
Maintaining the Plan ..................................................................................................................... 18
Retaining Members of the Original Planning Team ..................................................................... 18
Reviewing and Keeping the Plan Up-to-Date ............................................................................... 18
How to Stress Plan’s Importance .................................................................................................. 18
Plan Distribution ........................................................................................................................... 18
BCDR PLAN 3
Conclusion .................................................................................................................................... 19
BCDR PLAN 4
Company Information
Company Name: Don’t Die LLC
HQ Location: 2594 Griffin St., Phoenix, AZ 85034
Production Location: 982 Dye St., Mesa, AZ 85225
Revenue Model: Don’t Die LLC generates its revenue through the production and selling
of stuffed animals and pillows.
CEO & Founder: Laurie V Watkins
BCDR SMEs:
Departments:
Administration Manager: Jennifer C. Hannon
Sales Manager: Michael A. Williams
Manufacturing Manager: Maritza I. Harris
Research & Development Manager: Katherine J. Bowman
Maintenance Manager: Darlene J. Vanhorn
Advertising Manager: Eric V. Thornton
Shipping Manager: James M. Baker
Purchasing Manager: Alexander M. Martin
Security Manager: Ana R. McGinnis
IT Manager: Heather T. Hernandez
Executive Summary
Very few organizations take the time and effort to implement and test their operational
contingency strategies in the face of a disaster. To minimize of the potential cost of downtime
from lack of recovery Don’t Die LLC has taken extra steps to prepare in the event of an
unknown disaster.
In this plan, all operational critical functions have been identified and are redundant in the
various scenarios of the disaster recovery strategy design. Don’t Die LLC have several operating
facilities that can be used in a critical crisis situation. The recovery strategy includes a recovery
center with previously identified critical workstations, so employees and staff continue critical
operations.
It is recommended that Don’t Die LLC implements a warm site or hot site that will have an
initial cost ranging from $175000 to $250000, but will save the company $330200 per day it
would take to bring a cold site to normal operations.
BCDR PLAN 5
Risks
 Flash floods
 Forest fires
 Tropical storms
 Tornados
 Wind/Dust storms
 Earthquakes
 Armed attacks
 Cyber attacks
 Fire
 Power outages
 Transportation attacks, accidents, and/or failures
 Minor intrusion
 Major intrusion
 Broader network infrastructure impaired
 Protests
 Civil disorder, rioting, and unrest
 Product tampering
 Embezzlement, larceny, and theft
 Extortion
 Highway collapse or major accidents
 Pipeline collapse or accident
 Infrastructure accidents and failures
 Gas
o Outage, explosion, evacuation, collapse of system
 Water
o Outage, contamination, shortage, collapse of system
 Sewer
o Stoppage, backflow, contamination, collapse of system
 Information system infrastructure
 Internet infrastructure outage
 Communication outage
 Major service provider outage
 Systems failure
 Power grid or substation failure
 Nuclear power facility incident
 Building collapse
QAD Business Impact Analysis

1. Loss of buildings would be devastating and would not only halt production, but possibly
reduce the number of employees afterwards depending on when the building was lost.
BCDR PLAN 6
2. Loss of power would result in no productivity meaning that there will be no new products
to be produced during that downtime as well as little to no way to communicate to all
customers that would be affected until it is too late.
3. Loss of communication would be inconvenient, but would not completely halt
production. Orders previously placed can be produced in the time communications are
down/being worked on.
4. Loss of information system and internet infrastructure could result in limited productive
due to lack of communication to the outside as well as possibly being unable to access
previous orders
5. Cyber attacks could limit the access of employees who need to be able to communicate
with those outside the company as well as those who accessing the network remotely
depending on the attack. It could also result in loss of customers if the situation is not
handled appropriately.
6. Loss of water would inconvenience workers, but would otherwise not majorly affect
overall productivity
7. Embezzlement and actions similar will result in the company losing revenue
Mitigation Strategies
 Have backup locations listed as well as plans in place in case evacuation is necessary
to reduce possible hazards to employees
 Have backup generators charged up and available in case power is lost
 Consider switching to completely solar power to limit power loss
 Ensure at least managers have a cell phone that is capable of email as well as
international communication if necessary
 Have backup sites with replacement equipment
 Have a team dedicated to incident response as well as monitoring for cyber attacks
 Attempt to keep employees happy and feeling appreciated
 Have production print out orders for the week in case of system failures
Cost of Downtime
 The electricity is down for 2 days
o $48400
 The server has crashed but there was a backup made 1 hour prior to the crash (20 GB of
data)
o $36000000
 The customer order site was down for 2 days
o $42530
 The delivery trucks are 1 day late to pick up shipment
o $2000
 The supply trucks mixed up deliveries
o $6000
 5000 stuffed animals had to be recalled after causing health issues
BCDR PLAN 7
o $100000
 Company was victim to phishing attack
o $24000
 Business must be relocated to new building after an earthquake
o $30000
 There was a fire at HQ damaging all of the computer present (50)
o $55068
 20 Employees go on strike for 2 weeks
o $21020
Cost per Day of Downtime

 Payroll (ex. $1million is about $4,000 per day) $ __12000__
 Lost business/Orders/Revenue $ __21020___
 Total $ __33020___ x # Days ___10___ = $ __330200____
Cost to Recover
 Reenter Accounting $ _19000000_
 Reenter Data and Systems Recovery $ _5000000_
 Law Suits from Clients$ __43000___
 Lost reputation $ ___2000___
Insurance Policy
Insurance Carrier: Insureon
Contact Information: 800.688.1984
Estimate: $1.36 million
Assessment of Damage and Potential Insurance Coverage:
 Revenue
 Day-to-day expenses
 Relocation
 Rent
 Employee Salaries
 Taxes
 Loan Payments
Potential Insurance Gaps

 Machinery replacement
 Lost product
 Supply replacement
BCDR PLAN 8
Contacting Insurance Provider Checklist

Status (e.g. Completed,
Pending, or N/A)
Names and Title of Employees Authorized to Contact Insurance
Providers
Contact and Locations of Insurance Providers
How Describe Impact of Disaster to Report Damages
Current Insurance Policy Numbers and Information About
Coverage
How facilities and locations should be identified for insurance
claims
How to develop initial and comprehensive insurance claims
How to photograph, videotape, or otherwise report information
that can support the extent of damage and the potential cost of
recovery
Memo to Task Coordinator

 Risks to Company Reported by FEMA
o Flash Floods
o Road and Bridge washouts
o Intense Summer Heat
o Drought
o High Winds
o Wildland and Urban Fires
 Services FEMA Provides
o support our citizens and first responders to ensure that as a nation we work
together to build, sustain and improve our capability to prepare for, protect
against, respond to, recover from and mitigate all hazards
o Flood and Earthquake Insurance
Resources
 Computer Equipment
o Desktops
o Laptops
o Mice
o Keyboards
o Monitors
 Communication Links
o Internet
 Communication Equipment
o Cell phones
o Landlines
BCDR PLAN 9
 Office Equipment and Supplies

o Desks
o Chairs
o Coffee Maker
o Water Coolers
o Printers
o File Cabinets
o File folder
o Pens
o Note pads
o Staplers
o Kiosks
o Sticky Notes
 BC/DR plans
 Contact List
 Inventory List
Alternative Work Site Procedures

 Personnel to Contact
o Administration Manager: Jennifer C. Hannon
 Phone: 602.278.5360
 Email: jhannon@dontdie.com
 Location: 2594 Griffin St., Phoenix, AZ 85034
o Security Manager: Ana R. McGinnis
 Phone: 602.335.7083
 Email: amcginnis@dontie.com
o IT Manager: Heather T. Hernandez
 Phone: 602.356.1323
 Email: hhernandez@dontdie.com
 Cold Site Backup
o HQ Location: 3077 Crowfield Rd, Phoenix, AZ 85032
 Equipment and Other Resources Needed
 Power, Internet, Water, and Phonelines are Setup
 Desks
 Chairs
 Computers
 Keyboards
 Mice
 Phones
 Printers
BCDR PLAN 10
o Production Location: 4772 Elmwood Ave., Mesa, AZ 85205

 Material Cutter
 Cotton Stuffer
 Product Press
 Product Sealer
 Kiosks
 Printers
 Desks
 Chairs
 Computers
 Keyboards
 Mice
 Phones
o Executive Summary: This backup site for either location is good for having a new
location to go to, but will have none of the equipment setup and ready to go upon
arrival. It will take __ hours to get everything properly setup before work can
resume, but this will be a less expensive site due to it not being operational when
the original site is operational.
 Warm Site Backup
 Desks
 Chairs
 Computers
 Keyboards
 Mice
 Phones
 Printers
 Material Cutter
 Cotton Stuffer
 Product Press
 Product Sealer
 Kiosks
 Printers
 Desks
BCDR PLAN 11
 Chairs
 Computers
 Keyboards
 Mice
 Phones
location to go to with all of the equipment and resources setup, but will not have
all the necessary data available upon arrival. It will take __ hours to get all data
restored, but work can resume within the first hour, but this will be a more
expensive site due to it being mostly operational while the original site is
operating.
 Hot Site Backup
 Desks
 Chairs
 Computers
 Keyboards
 Mice
 Phones
 Printers
 Material Cutter
 Cotton Stuffer
 Product Press
 Product Sealer
 Kiosks
 Printers
 Desks
 Chairs
 Computers
 Keyboards
 Mice
 Phones
location to go to with all of the equipment and resources setup and fully
operational, but will be a very costly site due to it being fully operational while
the original site is operating. This also means that there will be no downtime
between locations beyond traveling to the new location.
BCDR PLAN 12
 Mobile Site Backup

 Desks
 Chairs
 Computers
 Keyboards
 Mice
 Phones
 Printers
 Material Cutter
 Cotton Stuffer
 Product Press
 Product Sealer
 Kiosks
 Printers
 Desks
 Chairs
 Computers
 Keyboards
 Mice
 Phones
location to go to with some of the resources setup, but will rely on the time it
takes for the equipment to be delivered. This site will be more expensive than a
cold site due to it having operational resources while the original site is operating
as well as delivery costs, but it will be cheaper than the other sites due to not
being fully setup and operational.
 Mirrored Site Backup
 Desks
 Chairs
 Computers
 Keyboards
 Mice
BCDR PLAN 13
 Phones
 Printers
 Material Cutter
 Cotton Stuffer
 Product Press
 Product Sealer
 Kiosks
 Printers
 Desks
 Chairs
 Computers
 Keyboards
 Mice
 Phones
o Executive Summary: This backup site for either location is good for having an
exact copy of the original site that can be operating in real-time. This will be
costly to have operational with the price similar to the original location. This will
have lower downtime mainly relying travel time between locations and will have
all necessary data available fairly current.
Notifying Crisis Communication Command Center

 Personnel to Contact
 Phone: 602.278.5360
o Security Manager: Ana R. McGinnis
 Phone: 602.335.7083
 Email: amcginnis@dontie.com
 Phone: 602.356.1323
 State Emergency Operation Center
o Phone: 602.464.6307
o Email: david.roby@azdema.gov
o Address: 5636 E McDowell Rd Bldg. M5103, Phoenix, AZ 85008
 DEMA Communication and Technology
BCDR PLAN 14
o Email: demaita@azdema.gov
o Address: 5636 E McDowell Rd Bldg. M5101, Phoenix, AZ 85008
Communication Plan Objectives

 Employee: In the case of a disaster that causes any form of downtime, an announcement
should be made to keep all employees affected to keep them aware of the situation until it
is resolved.
 Customer: In the case of a disaster that would limit the customer’s access to our services,
an announcement of the incident should be sent with an estimated time for the issue to be
resolved. In the event the estimated will be longer than expected, an update will be sent.
A final message will be sent once the situation has been resolved.
 Media: In the case of a disaster that would limit the customer’s or vendor’s access to our
services and would be a possible cause for a loss in reputation, an announcement of the
incident should be sent with an account of future actions. A final message will be sent
once the situation has been resolved.
Distribution List
 Distribution Alternatives
o Company Cellphones
o Fax
o Automated Messages
 Contacts Needed
 Phone: 602.278.5360
 Phone: 602.356.1323
Legal Constraints
 CAN-SPAM Act: Establishes requirements for commercial messages, gives recipients the
right to have companies stop emailing them and the penalties for violations.
 Telephone Consumer Protection Act: Restricts telephone solicitations and the use of
automated telephone equipment.
Communication Template
 Disaster Declaration Statement:
Dear __,
BCDR PLAN 15
On __Date__, ____Event_____ occurred. It has caused ___Impact____ and we are taking

the steps necessary to bring business back to its usual activities. We are currently at a
__Current Status and Condition __. There will be more updates as we continue to bring
more services back online. We are currently looking at an update within __Timeframe__.
Sincerely,
Employee Name
Employee Title
Don’t Die LLC
 Authorization or Escalation Channels

 Distribution Channels
o Email
o Intranet
o Fax
o Text
o Website
 Communication Frequency
o Whenever a crisis occurs
o Whenever a service has been returned
o Whenever a crisis has been completely recovered
o When a recovery timeframe changes
Organizational Chart
 Administration
o Manager: Jennifer C. Hannon
o Assistant Manager: Ricky T. Anderson
 Sales
o Manager: Michael A. Williams
o Assistant Manager: Gloria J. Simeone
 Manufacturing
o Manager: Maritza I. Harris
o Assistant Manager: Christy A. Spray
 Research & Development
o Manager: Katherine J. Bowman
o Assistant Manager: Tony J. Padula
 Maintenance
o Manager: Darlene J. Vanhorn
o Other: Winifred J. Sims
 Advertising
o Manager: Eric V. Thornton
BCDR PLAN 16
o Assistant Manager: Shelley P. Forbes

 Shipping
o Manager: James M. Baker
o Assistant Manager: Janice S. Shull
 Purchasing
o Manager: Alexander M. Martin
o Assistant Manager: Violet D. Fischer
 Security
o Manager: Ana R. McGinnis
o Other: Christian M. Watson
 IT
o Manager: Heather T. Hernandez
o Other: Jennifer D. Oman
Employee Status Assessment

 On Leave
 Out of Office
 Traveling
 Half-day
 Late
 Available
Vendor List
 Organic Cotton Plus
 Cloud9 Fabrics
 JOANN Fabrics and Crafts
 Notions Marketing
Emergency Response Organizations

 Fire
o Phoenix Fire Department Station 29
 3949 Air Ln, Phoenix, AZ 85034
 Non-Emergencies: 602.495.5555
o Phoenix Fire Department Station 19
 2547 E Sky Harbor Blvd, Phoenix, AZ 85034
 602.262.7155
 Police/Sheriff
o Phoenix Police Department – Central City Precinct Station
 1902 S 16th St, Phoenix, AZ 85034
 602.495.5005
 Search and Rescue
BCDR PLAN 17
o State Search and Rescue Coordinator

 5636 E McDowell Road Bldg. M5103, Phoenix, AZ 85008
 602.920.0167
 Hospital/Ambulance
o OASIS Hospital
 750 N 40th St, Phoenix, AZ 85008
 602.797.7700
Disaster Recovery Specialist Checklist

pending, or N/A)
Names and titles of employees who are authorized to contact
disaster recovery service providers
Contact information and locations of disaster recovery service
providers
How to describe needs to these service providers
How facilities and locations should be identified for these service
providers
Information on negotiated contracts with these service providers
Information on paying these service providers if there are no
negotiated contracts
How to access emergency funds to pay disaster recovery service
providers
Supplier Checklist
pending, or N/A)
Names and titles of employees who are authorized to work with
suppliers and service providers
Contact information and locations of suppliers and service providers
How product lines or services should be identified when contacting
suppliers and service providers
What to tell suppliers and service providers about disasters
What to tell them about recovery of operations
What suppliers and service providers should do if they need to
contact the organization during the disaster
Customer Checklist
pending, or N/A)
Names and titles of employees who are authorized to work with
customers
BCDR PLAN 18
Contact information and locations of key customers

How product lines or services should be identified when contacting
customers
What customers should be told about disasters
What to tell them about recovery of operations
What customers should do if they need to contact the organization
during the disaster
Maintaining the Plan

Archive all old copies of the plan (in all forms in any locations) for 5 years in the event that the
most current version was eradicated and to have some point of reference for in the face of a
BCDR event. After the 5-year time limit has passed, the old copies may be destroyed and
replaced with newer copies in the archive.
Retaining Members of the Original Planning Team

 Advantages
o Familiarity
o Reduces confusion of those in charge
o Cheaper compared to outsourcing a team
 Disadvantages
o If the original team was unable to efficiently execute plan, the improvements
brought from the changes will not be completely achieved
Reviewing and Keeping the Plan Up-to-Date

Every 6 months there should a test disaster to test the efficiency of the plan. Any issues can be
noted and addressed in a review session to be implemented in a newer version of the plan that
will then be distributed to all necessary locations. This way if something in the plan hinders
bring operations back to normal in a timely fashion it can be discovered and corrected before a
real disaster occurs.
How to Stress Plan’s Importance

Though there may be some who do not see the necessity of planning for a disaster, to encourage
attendance, send a warning in advance that it is mandatory and that there will be a light breakfast
and lunch provided. Making it mandatory as well as providing food should give enough
incentive for all necessary employees to attend.
Plan Distribution
 Intranet
o Advantages: Ease of deployment, low costs, accessible by all employees and
business partners
BCDR PLAN 19
o Disadvantages: Not available if the intranet is down, remote connectivity is low,

or the server is down
 Hosted Web Server
o Advantages: Broader possible access than an intranet; server is maintained off site
o Disadvantages: Not available if Web server or hosting company is down; requires
remote connectivity
 USB Copies
o Advantages: Does not rely on network connectivity; can be deployed on a laptop
or notebook
o Disadvantages: Must be continually updated with latest version
 Paper Copies
o Advantages: Does not rely on network connectivity or computer availability
o Disadvantages: Must be continually replaced with updated versions
 Recommendation: Hosted web server for ease of access and paper copies as a backup in
case the web server cannot be accessed.
Conclusion
Taking the time to identify the risks, addressing the risks through criticality, mitigating those
risks by maintaining an alternate site to continue normal business operations after a disaster has
occurred, and implementing a plan that will evaluate and provide the contacts necessary to help
save the company $330200 per day it would take to bring operations back to normal.
BCDR PLAN 20
References
About the Agency. (2017, May 16). Retrieved October 15, 2017, from
https://www.fema.gov/about-agency
Business Interruption Insurance. (n.d.). Retrieved October 15, 2017, from
http://www.insureon.com/products/business-interruption-insurance
De Wet, J. (2013, February 22). The Financial Impact of Strike Actions. Retrieved October 1,
2017, from http://www.gaaaccounting.com/the-financial-impact-of-strike-actions/
Evers, J. (2006, January 20). Computer crime costs $67 billion, FBI says. Retrieved October 1,
2017, from https://www.cnet.com/news/computer-crime-costs-67-billion-fbi-says/
Fire/Smoke Damage Restoration and Repair. (2017, January 12). Retrieved October 1, 2017,
from http://www.improvenet.com/r/costs-and-prices/fire-damage-restoration
How Much Does a Desktop Computer Cost? (n.d.). Retrieved October 01, 2017, from
http://electronics.costhelper.com/computers-desktop.html
Hudson, M. (2017, June 9). How to Estimate Retail Store Rent Costs. Retrieved October 01,
2017, from https://www.thebalance.com/what-it-costs-to-rent-a-building-space-2890493
Kauffman, B. (2013, February 26). Study on Estimating the Cost of Civil Litigation Provides
Insight into Court Access. Retrieved October 1, 2017, from http://iaals.du.edu/blog/study-
estimating-cost-civil-litigation-provides-insight-court-access
Nath, T. (2015, January 8). How Do Recalls Affect A Company? Retrieved October 1, 2017,
from http://www.investopedia.com/articles/investing/010815/how-do-recalls-affect-
company.asp
O'Neal, D. L. (n.d.). How to Calculate the Per-day Payroll Rate. Retrieved October 1, 2017, from
http://smallbusiness.chron.com/calculate-perday-payroll-rate-54026.html
BCDR PLAN 21
Perlin, M. (2012, September 17). Downtime, Outages and Failures - Understanding Their True
Costs. Retrieved October 1, 2017, from https://www.evolven.com/blog/downtime-
outages-and-failures-understanding-their-true-costs.html
Snedaker S., & Rima C. (2014) Business Continuity and Disaster Recovery Planning for IT
Professionals. San Francisco, CA: Elsevier.
State of Arizona. (2016, August 09). Retrieved October 15, 2017, from
https://www.fema.gov/state-arizona

ntw440 Aevans Bcdrpfinal-2

Transféré par

Informations du document

Titre original

Copyright

Formats disponibles

Partager ce document

Partager ou intégrer le document

Options de partage

Avez-vous trouvé ce document utile ?

Ce contenu est-il inapproprié ?

Droits d'auteur :

Formats disponibles

ntw440 Aevans Bcdrpfinal-2

Transféré par

Droits d'auteur :

Formats disponibles

BCDR PLAN 1

QAD Business Impact Analysis

Cost per Day of Downtime

Potential Insurance Gaps

Contacting Insurance Provider Checklist

Memo to Task Coordinator

 Office Equipment and Supplies

Alternative Work Site Procedures

o Production Location: 4772 Elmwood Ave., Mesa, AZ 85205

 Mobile Site Backup

Notifying Crisis Communication Command Center

Communication Plan Objectives

On __Date__, ____Event_____ occurred. It has caused ___Impact____ and we are taking

 Authorization or Escalation Channels

o Assistant Manager: Shelley P. Forbes

Employee Status Assessment

Emergency Response Organizations

o State Search and Rescue Coordinator

Disaster Recovery Specialist Checklist

Contact information and locations of key customers

Maintaining the Plan

Retaining Members of the Original Planning Team

Reviewing and Keeping the Plan Up-to-Date

How to Stress Plan’s Importance

o Disadvantages: Not available if the intranet is down, remote connectivity is low,

Business Interruption Insurance. (n.d.). Retrieved October 15, 2017, from

2017, from http://www.gaaaccounting.com/the-financial-impact-of-strike-actions/

2017, from https://www.cnet.com/news/computer-crime-costs-67-billion-fbi-says/

2017, from https://www.thebalance.com/what-it-costs-to-rent-a-building-space-2890493

Insight into Court Access. Retrieved October 1, 2017, from http://iaals.du.edu/blog/study-

Costs. Retrieved October 1, 2017, from https://www.evolven.com/blog/downtime-

Professionals. San Francisco, CA: Elsevier.

Vous aimerez peut-être aussi

On Date, __Event_ occurred. It has caused _Impact____ and we are taking