210 likes | 324 Views
Beyond Business Continuity And Disaster Recovery The Paradigm Shift. Mardecia Bell Ann Harris. History/Timeline. Organizational Resilience Unit. The OR Unit was established to close the gaps in the Capability Maturity Model by using: Industry standards and best practices
E N D
Beyond Business Continuity AndDisaster Recovery The Paradigm Shift Mardecia Bell Ann Harris
Organizational Resilience Unit The OR Unit was established to close the gaps in the Capability Maturity Model by using: • Industry standards and best practices • Auditing processes for resiliency • Promoting policies, rules and regulations
Business Resiliency Resiliency is an enterprise-wide state of readiness including people, processes, information, facilities, and third-parties as well as technology to cope effectively with potentially disruptive events. (Financial Services Technology Consortium)
Business Resiliency Cont.’d It is an enterprise's capability to respond rapidly to unforeseen change, even chaotic disruption. It is the ability to bounce back — and, in fact, to bounce forward — with speed, grace, determination and precision. (Gartner Research “The Five Principles of Organizational Resilience”)
Disaster Recovery Static in nature Slow and dogmatic Reactionary Stationary work dependencies Organizational Resilience Flexible Rapid response High state of readiness Mobile work environments The Paradigm Shift
The Layers of Organizational Resilience • Strategy and Vision • What are the concerns? • What is the future direction/roadmap? • What does this mean for me? • What are the expected service levels?
The Layers of Organizational Resilience • Organization • Who should I turn to for help? • [Someone] should know about this? • Documented roles, responsibilities, accountability
The Layers of Organizational Resilience • Processes • Who knows how/why it was done that way? • Where is that manual??? • What if the change happened here? • Do we have identified alternatives?
The Layers of Organizational Resilience • Applications and Data • Is the data secure/stable? • Is the application accessible remotely? • Is the application/data changed becoming unusable? • What’s the tolerance level in the event of a disruption? • Backups…
The Layers of Organizational Resilience • Technology • Is there a better way? • Cheaper • Safer • More secure • Market advised • Have threats or potential impacts changed? • Redundancy/Failover
Fault-tolerant cluster (file and print services) A Production B Production B Production B Configuration A Configuration A Production • Co-processing and load-balancing (ERP) A Production A Production A Production • Distributed deployment (hosted systems) A Production A Development A Production • Data replication (mainframe) Data Data Data Server Server Server Illustration of Various DR Deployments
Financial System (Version 8.4) • Human Resources (Version 8.8) • Student Information System (v8.9 under development) Campus Users DC I Web Server Web Server Web Server Web Server Batch Server Batch Server Batch Server Batch Server Application Server Application Server Application Server Application Server DB Server DB Server Data Storage Area Network Enterprise Resource Planning (ERP) Deployment DC II
ERP Application ERP Application ERP DB Server ERP Web Web Server Web Server ERP Web Backup/vaulting ERP Batch ERP Batch Data Data Data Backup/vaulting Storage Area Network Database Server ERP DB Server Summary and Future Steps DC I DC II Email/Calendar Anti-SPAM Email/Calendar Anti-SPAM File/Print, User Home File/Print, User Home Novell Directory Services / Novell Novell Directory Services / Novell Citrix Citrix Hosted systems Hosted systems Data Data Data Data Active Directory / Windows Active Directory / Windows Data Data Infrastructure Storage Area Network Infrastructure Storage Area Network Database Server Development Server Mainframe Server Development Server Mainframe Server
The Layers of Organizational Resilience • Facilities • What if I can’t get to my PC? • Can you perform your critical tasks remotely? • Are your critical applications hosted or local to your PC? • What if I can’t get to my office? • Are critical files accessible remotely? • Manuals • Procedures
Network failure Fire (in data centers and/or offices) Inability to access data centers and/or offices Extreme weather conditions Human errors Theft or malicious activities Lack of staff resources Corrupt data Vaulting damage or errors Regional disasters Flooding of datacenters and/or offices Main Distribution Frame (MDF) fire and/or flood Lack of equipment Third-party network failure (i.e. RoadRunner down) Hardware Failure Software Failure Network breaks (fiber and cable damage) Physical access of data centers (keys, card readers) Access to data in an emergency (maintenance of ACL's) Security documentation Business Impact Analysis and Risk SummaryWorkshop Session I
Organizational Resiliency • The next step in DR/Business Continuity • To incorporate readiness and contingency in daily operations • To be ready to address any type of disruption at all times
Contact Ann S. HarrisAssistant DirectorNC State UniversityRMIS Organizational Resilience919-515-9228ann_harris@ncsu.edu