Disaster Recovery Plan - Berry College
INFORMATION TECHNOLOGYDISASTER RECOVERY PLANFebruary 16, 2021
TABLE OF CONTENTSTABLE OF CONTENTS . 2INTRODUCTION . 5PLAN OVERVIEW . 5HISTORY . 5PLAN APPROVAL . 6DISASTER DECLARATION . 7PERSONNEL AUTHORIZED TO DECLARE A DISASTER OR RESUME NORMAL OPERATIONS . 7PLAN ACTIVATION . 7RESUMPTION OF NORMAL OPERATIONS . 7PLAN OVERVIEW, OBJECTIVES, AND DECISIONS . 8PLAN OVERVIEW . 8PLAN OBJECTIVES. 8DISASTER RECOVERY PHASES . 9DISASTER ASSESSMENT . 9DISASTER RECOVERY ACTIVATION . 9ALTERNATE SITE OPERATION/DATA CENTER REBUILD . 9RETURN HOME . 10KEY DISASTER RECOVERY ACTIVITIES. 10DISASTER DECISION TREE . 11DECISION MAKING FOR A DATA CENTER DISASTER . 12RECOVERY TIME OBJECTIVES (RTO) . 13RECOVERY POINT OBJECTIVES (RPO) . 14THE DISASTER RECOVERY COORDINATOR . 15PRIMARY LOCATION . 17SECONDARY LOCATION . 17VITAL RECORDS RETRIEVAL. 17Page 2 of 44Information Technology Disaster Recovery Plan – ConfidentialFebruary 16, 2021
OVERVIEW OF WHAT IS STORED OFFSITE . 17DISASTER RECOVERY TEAM . 18DISASTER RECOVERY MANAGEMENT TEAM (MGMT) . 18GENERAL RESPONSIBILITIES . 18ADMINISTRATIVE RESPONSIBILITIES (ADMN) . 19PUBLIC RELATIONS RESPONSIBILITIES (PUB) . 20MANAGEMENT TEAM CALL CHECKLIST . 20TECH SUPPORT TEAM (TECH) . 21HARDWARE RESPONSIBILITIES (HARD) . 21SOFTWARE RESPONSIBILITIES (SOFT) . 22NETWORK RESPONSIBILITIES (NET) . 23OPERATIONS RESPONSIBILITIES (OPS) . 24TECH SUPPORT TEAM CALL CHECKLIST . Error! Bookmark not defined.FACILITY TEAM (FACL) . 24SALVAGE RESPONSIBILITIES (SALV) . 25NEW DATA CENTER RESPONSIBILITIES (DCTR) . 26NEW HARDWARE RESPONSIBILITIES (HARD) . 27FACILITY TEAM CALL CHECKLIST . 27SEQUENTIAL LIST OF DISASTER RECOVERY TASKS . 28DISASTER ASSESSMENT PHASE . 29DISASTER RECOVERY ACTIVATION PHASE . 30ALTERNATE SITE OPERATION / DATA CENTER REBUILD PHASE . 33RETURN HOME PHASE . 34APPLICATION RECOVERY PRIORITIES . 35SERVER RECOVERY . 36SERVER RECOVERY GENERAL INFORMATION . 36SERVER RECOVERY GENERAL TASK CHART . 36SERVER RECOVERY . 38SERVER INVENTORY . 38NETWORK RECOVERY . 38Page 3 of 44Information Technology Disaster Recovery Plan – ConfidentialFebruary 16, 2021
NETWORK RECOVERY PROCEDURES. 38NETWORK DIAGRAM . Error! Bookmark not defined.DISASTER RECOVERY PLAN MAINTENANCE . 39DISASTER RECOVERY PLAN RECOMMENDED MAINTENANCE . 40DISASTER RECOVERY PLAN UPDATE LOG . 40DISASTER RECOVERY PLAN DISTRIBUTION LIST . 41TRAINING THE DISASTER RECOVERY TEAM . 42DISASTER RECOVERY TRAINING LOG . 42TESTING THE DISASTER RECOVERY PLAN . 43SAMPLE RECOVERY TEST AGENDA . 43RECOVERY TEST HISTORY . Error! Bookmark not defined.SAMPLE RECOVERY TEST PLAN . Error! Bookmark not defined.DISASTER RECOVERY PLAN TESTING FORMS . Error! Bookmark not defined.TEST EVALUATION. Error! Bookmark not defined.PERSONNEL LISTING . 44Personnel is contained in worksheet 2 of “Addendum 1 – Contacts.xlsx”VENDOR LISTING . 44DAMAGE ASSESSMENT AND SALVAGE CHECKLIST . Error! Bookmark not defined.DAMAGE ASSESSMENT AND SALVAGE LOG . Error! Bookmark not defined.Page 4 of 44Information Technology Disaster Recovery Plan – ConfidentialFebruary 16, 2021
INTRODUCTIONBerry College’s Office for Information Technology (OIT) maintains a written disaster recovery plan thatincludes all information resources to minimize the effects of a disaster and allow the college to eithermaintain or quickly resume mission-critical functions. This disaster recovery plan serves as the guide for BerryCollege OIT management and staff in the recovery and restoration of the information technology systemsoperated by OIT in the event a disaster destroys all or part of those systems.PLAN OVERVIEWThe disaster recovery plan is comprised of sections that document resources and procedures to be used inthe event that a disaster occurs at OIT data centers located in the Telecom Shop and/or the offsite colocationfacility. Each supported application or platform has a section containing specific recovery procedures. Thereare also sections that document the personnel that will be needed to perform the recovery tasks and anorganizational structure for the recovery process. This plan will be updated on a regular basis as changes tothe computing and networking systems are made.HISTORYFor more than a century, Berry College has emphasized the importance of a comprehensive andbalanced education that unites a challenging academic program with opportunities for meaningful workexperience, spiritual and moral growth, and significant service to others. This commitment to providinga firsthand educational experience – expressed as “Head, Heart and Hands” by college founder MarthaBerry – remains just as relevant today as it was when the institution was founded in 1902.Nationally recognized for both quality and value, Berry is an independent, coeducational college ofapproximately 2,100 students that offers exceptional undergraduate degree programs in the sciences,humanities, arts and social sciences, as well as undergraduate and master’s level opportunities inbusiness and teacher education. Students are encouraged to enrich their academic studies throughparticipation in one of the nation’s premier on-campus work experience program, and more than 90percent take advantage of this unique opportunity to gain valuable real-world experience prior tograduation.Page 5 of 44Information Technology Disaster Recovery Plan – ConfidentialFebruary 16, 2021
PLAN APPROVALBerry College – Mount Berry GA, Version 2.5, dated January 13, 2020 has been reviewed and approved.Penny Evans-Plants, Chief Information OfficerPage 6 of 44DateInformation Technology Disaster Recovery Plan – ConfidentialFebruary 16, 2021
DISASTER DECLARATIONPERSONNEL AUTHORIZED TO DECLARE A DISASTER OR RESUME NORMALOPERATIONSThe following employees of Berry College are authorized to declare an Information Technology SystemsDisaster and also signal a resumption of normal processing:NameTitleStephen BriggsPresidentBrian ErbVice President for FinancePenny Evans-PlantsChief Information OfficerPLAN ACTIVATIONThis plan will be activated in response to internal or external threats to the Information Technology Systemsof Berry College. Internal threats could include fire, bomb threat, loss of power or other utility or otherincidents that threaten the staff and/or the facility. External threats include events that put the facility indanger. Examples might include severe weather or a disruptive incident in the community. Once a threat hasbeen confirmed, the plan management team will assess the situation and initiate the plan if necessary.RESUMPTION OF NORMAL OPERATIONSOnce the threat has passed, equipment has been repaired or replaced, or a new data center has been builtand stocked, the disaster recovery team will assess the situation, declare the disaster over and resumenormal operations.Page 7 of 44Information Technology Disaster Recovery Plan – ConfidentialFebruary 16, 2021
PLAN OVERVIEW, OBJECTIVES, AND DECISIONSPLAN OVERVIEWThe primary focus of this document is to provide a plan to respond to a disaster that destroys or severelycripples the college's computer systems operated by the Information Technology Department. The intent isto restore operations as quickly as possible with the latest and most up-to-date data available. This plan isdesigned to reduce the number of decisions which must be made when, and if, a disaster occurs.This plan is a “living document.” It is the responsibility of everyone involved in Berry's disaster recoveryefforts to ensure that the plan remains current. When you are aware of any changes to personnel, hardware,software, vendors or any other item documented in the plan, please bring them to the attention of the planadministrator.PLAN OBJECTIVESThe overall objectives of this plan are to protect Berry’s computing resources and employees, to safeguardthe vital records of which the Office for Information Technology is the custodian, and to guarantee thecontinued availability of essential IT services. The role of this plan is to document the procedures forresponding to a disaster that involves the data center and OIT services.A disaster is defined as the occurrence of any event that causes a significant disruption in IT capabilities. Thisplan assumes the most severe disaster, the kind that requires moving computing resources to anotherlocation. Less severe disasters are controlled at the appropriate management level as a part of the total plan.The basic approach, general assumptions, and possible sequence of events that need to be followed arestated in the plan. It will outline specific preparations prior to a disaster and emergency proceduresimmediately after a disaster. The plan is a roadmap from disaster to recovery. Due to the nature of thedisaster, the steps outlined may be skipped or performed in a different sequence. The general approach is tomake the plan as threat-independent as possible. This means that it should be functional regardless of whattype of disaster occurs.For the recovery process to be effective, the plan is organized around a team concept. Each team has specificduties and responsibilities once the decision is made to invoke the disaster recovery mode. The leader ofeach team and their alternates are key OIT and other college personnel. With such a small IT staff, the use ofdistinct teams with separate responsibilities is not practical as would be in larger organizations. Rather, ITPage 8 of 44Information Technology Disaster Recovery Plan – ConfidentialFebruary 16, 2021
staff will be assigned to multiple teams with specific assignments made according to knowledge, experienceand availability. It is also assumed vendors and knowledgeable personnel from Berry will be actively enlistedto help during a recovery situation.The plan represents a dynamic process that will be kept current through updates, testing, and reviews. Asrecommendations are completed or as new areas of concern are recognized, the plan will be revised toreflect the current IT environment.DISASTER RECOVERY PHASESThe disaster recovery process consists of four phases. They are:Phase 1: Disaster AssessmentPhase 2: Disaster Recovery ActivationPhase 3: Alternate Site/Data Center Rebuild PhasePhase 4: Return HomeDISASTER ASSESSMENTThe disaster assessment phase lasts from the inception of the disaster until it is under control and the extentof the damage can be assessed. Cooperation with local emergency services personnel is critical.DISASTER RECOVERY ACTIVATIONWhen the decision is made to move primary processing to another location, this phase begins. The DisasterRecovery Management Team will assemble at the command center and call upon team members to performtheir assigned tasks. The most important function is to fully restore operations at a suitable location andresume normal functions. Once normal operations are established at the alternate location, Phase 2 iscomplete.ALTERNATE SITE OPERATION/DATA CENTER REBUILDThis phase involves continuing operations at the alternate location. In addition, the process of restoring theprimary site will be performed.Page 9 of 44Information Technology Disaster Recovery Plan – ConfidentialFebruary 16, 2021
RETURN HOMEThis phase involves the reactivation of the primary data center at either the original or possibly a newlocation. The activation of this site does not have to be as rushed as the activation of the alternate recoverycenter. At the end of this phase, a thorough review of the disaster recovery process should be taken. Anydeficiencies in this plan can be corrected by updating the plan.KEY DISASTER RECOVERY ACTIVITIESDeclaring a disaster means:1.Activating the recovery plan2.Notifying team leaders3.Notifying key management contacts4.Redirecting voice service to an alternate location5.Securing a new location for the data center6.Ordering and configuring replacement equipment7.Reconfiguring the network8.Reinstalling software and data9.Keeping management informed10. Keeping users informed11. Keeping the public informedPage 10 of 44Information Technology Disaster Recovery Plan – ConfidentialFebruary 16, 2021
DISASTER DECISION TREEEVENTDECISIONData Center destroyedActivate disaster recovery planData Center unusable for MORE than 2 daysActivate disaster recovery planData Center unusable for 2 days or LESSManagement Team and FacilitiesTeam perform an assessmentNetwork downManagement Team and Tech SupportTeam perform an assessmentBerry College Phone Service Down (Parker/Intelepeer)Management Team and Tech SupportTeam perform an assessmentEnvironmental problems (A/C, power, etc.)Management Team and Tech SupportTeam perform an assessmentPage 11 of 44Information Technology Disaster Recovery Plan – ConfidentialFebru
responding to a disaster that involves the data center and OIT services. A disaster is defined as the occurrence of any event that causes a significant disruption in IT capabilities. This plan assumes the most severe disaster, the kind that requires moving computing resources to another location.
4.2 State Disaster Recovery policy 4.3 County and Municipal Recovery Relationships 4.4 Recovery Plan Description 4.5 Recovery Management Structure and Recovery Operations 4.6 Draft National Disaster recovery Framework (February 5, 2010) 4.6.1 Draft Purpose Statement of the National Disaster Recovery Framework
NetWorker Server disaster recovery roadmap This guide provides an aid to disaster recovery planning an detailed step-by-step disaster recovery instructions. The following figure shows the high-level steps to follow when performing a disaster recovery of the NetWorker Server. Figure 1 Disaster recovery roadmap Bootstrap and indexes
KITSAP COUNTY DISASTER RECOVERY PLAN Table of Contents Introduction 1 Purpose & Objectives 1 Planning Goals 1 Recovery Overview 2 Recovery Plan Definition 2 Process of Recovery 2 Roles & Responsibilities 3 Disaster Sequence of Events 4 Functional Positions of Responsibility 5 Functional Checklists 6 Disaster Recovery Plan Validation Checklist 7 .
recovery mechanisms, and a formalized Disaster Recovery Committee that has responsibility for rehearsing, carrying out, and improving the disaster recovery plan. When a disaster strikes, the normal operations of the enterprise are suspended and replaced with operations spelled out in the disaster recovery plan.
Pre-Disaster Recovery Plan: A PDRP provides a framework for leading and managing recovery activities after a disaster. This may include providing human and social services to disaster survivors, gathering data used to develop strategies for an effective recovery, and organizing and managing resources for post-disaster recovery activities.
1. Post-Disaster Recovery and Disaster Risk Reduction require support from community participation in improving the quality and objectives of Disaster Management; 2. Community-based Disaster Risk Reduction is a key factor in participatory disaster management, including in post-disaster recovery, as indicated by best practices in Yogyakarta and .
community disaster—recognize that preparing for long-term disaster recovery demands as much attention as preparing for short-term response. After a major disaster, the recovery process takes months and even years to bring a community back to a "new normal" and as strong as or better than before the disaster. Disaster Recovery: A Local
8h293 berry global 3"x60yds foil duct tape ul181a-p 8h294 berry global 3"x50yds alum foil tape 8h940 berry global 2"x60yd silver duct tape 8h292 berry global 2.5"x60yds foil duct tape ul181a-p 8h320 berry global #557 2" x 60 yds black duct tape ul181b-fx 8h941 berry global 2"x60yd black duct tape
