Prepared Plan with Regular Performance Checks
Data loss can result from many factors, including: fire, power outages, employee theft, viruses and hackers, as well as modern tragedies that can leave companies without access to buildings and important documents. Preparation is the key. Those who are prepared have a better chance of overcoming losses with minimal damage. The first step is to back up the system regularly. Often times the problem isn’t that companies are not creating backups, but that they are not verifying the efforts. This results in "false backups" where data is believed to be secured, only to find in an emergency the backups failed and data has been lost. This is especially true with tape backups as tapes can be more easily corrupted, damaged, worn out, or employees can forget to change the tapes. In either case, it is too late and data is already lost which can often take weeks, or even months for these systems to be restored, if ever. Therefore, it is extremely important for companies to follow best practices and create policies and procedures for creating regular backups and for testing their recovery environments. Among these policies should be regularly scheduled test recoveries in order to ensure that backup policies and procedures are working properly. Recovery events should be conducted once a quarter to make sure backups are running as planned.
The Recovery Plan
Companies must also implement fast recovery plans in the event of data loss or systems interruption in conjunction with regular backups. The first step in planning for recovery is the assessment of your environment. When assessing what to include in a disaster recovery plan, companies should keep in mind the following:
By subscribing to our early morning news update, you will receive a daily digest of the latest security news published on Help Net Security.
With over 500 issues so far, reading our newsletter every Monday morning will keep you up-to-date with security risks out there.