IDG Contributor Network: Are you prepared for hurricane season? Disaster recovery and business continuity plan best practices

We are two months into the 2018 hurricane season, June 1 through November 30. Last year, Hurricane Harvey’s damage was estimated to be $190 billion and Irma’s share was $100 billion according to AccuWeather’s economic cost estimates for the 2017 hurricane season. So far, this year is being predicted as a much calmer year, but let’s not be complacent and forget what we know we should do.

Whether you are a small, medium or Fortune 500 company you need a disaster recovery/business continuity plan (DR/BCP) in place. Remember, DR/BCP is for more than just hurricanes, natural disasters, terrorism, denial-of-service attacks and so much more. NIST, HiTrust and HIPAA look at DR/BCP from an audit or compliance controls prospective as follows:

In NIST: NIST Special Publication 800-34, Rev. 1, Contingency Planning Guide for Federal Information Systems, provides instructions, recommendations and considerations for federal information system contingency planning. Contingency planning refers to interim measures to recover information system services after a disruption. Interim measures may include relocation of information systems and operations to an alternate site, recovery of information system functions using alternate equipment, or performance of information system functions using manual methods. This guide addresses specific contingency planning recommendations for three platform types and provides strategies and techniques common to all systems.

In HiTRUST: Control Category 12 – business continuity management.