Creating a business recovery plan might seem overwhelming, but remember we’re going to take it in baby steps- making sure that each step is detailed and that you know how things work. I reiterate the need for you to be involved 100% in creating this plan- this is your entire organization on paper.
You need a stake in its creation. And remember, this plan is going to be detailed. Period. Passwords. Pictures. Don’t make people think when disaster strikes. Expect them to follow the intuitive plan you lay out explicitly.
Start by making a few lists. What are the passwords to critical systems? What are the passwords for encrypted backups? Create a list of all of the contacts in the event of a disaster. What services are critical? Phone? Internet? Property Management? List the people who should be contacted and make sure they have their own plans. If they don’t this is a problem. Consider alternative vendors- all companies should have their prospective plans and it’s negligent not to have one.
List the people that should be contacted. You should have defined a response team that will spring into action when an issue arises. These folks should have a copy of the plan. You should really have two people responsible for responses- in case on is on vacation. The response team does not necessarily need to involve the CEO of the organization. You will have your hands full with other tasks, trust me!
Every time your response plan is updated, you should create a new version. Typically, I prefer to name my files with the date (year_month_day) followed by a brief file description. What’s worse than not having a plan, is having the wrong plan. If you’ve significantly made changes to how people respond to issues, having the wrong plan may cause more harm than good. When you’ve updated a plan, you must hand it out to two people on your team and communicate the whereabouts to your entire team so that everyone is on the same page and the same version.
Prevent confusion- keep everyone in the loop. The plan should be kept with the person in charge at all times. We often place copy in the server room in a red envelope. If you would like us to manage your plan, we can take care of the entire thing for you.
Just like your servers need maintenance, your plan should go through routine evaluation and modification. Don’t think that because you had a good plan a year ago that the plan is going to be effective this year. Things change, team members change, vendors change. There are too many interchangeable pieces in your business environment that could potentially alter how you respond to issues. Plan on having at least an annual meeting to discuss, re-evaluate and rework your recovery plan.
I like to have our disaster meeting coincide with an event. For instance, we do our recovery plan meeting every Halloween, which keeps us from becoming corpses. At this meeting, you should already have in place how you are going to evaluate and rework your plan. Have a fixed agenda. Identify points in your plan that are likely most-affected by changes in your organization.
And remember, you are not alone in coming up with the right recovery solution. Healthcurity can help you figure out the most appropriate strategy. Contact us today and we can start getting the ball rolling to make sure your business is safe and secure in 2019!
