OVERVIEW

Demand for IT service availability grow daily, yet cost pressure grows at an equal rate, as does complexity.

The hybrid cloud is the future for most of us: the complex and interdependent combination of workload on-premises, in co-location, and in all cloud environments (SaaS, PaaS, and IaaS).

Simply hosting a workload in the cloud is not enough. We must architect for resiliency.

And architecture isn’t enough – if we haven’t demonstrated our ability to recover.

Strategy & Design

IT Disaster Recovery: An Element of Risk Management and Business Continuity

The DR program is a sub-optimized “island unto itself” unless it complies with the DRI’s definition:

The technical aspect of business continuity. The collection of resources and activities to re-establish information technology services (including components such as infrastructure, telecommunications, systems, applications and data) at an alternate site following a disruption of IT services.

GTSG understands this need – to work closely with risk management and business continuity professionals to

  • match the investment we’re asking for
  • with the protection that the business wants from the risks it defines… and funds.

This is a fundamental responsibility IT undertakes when it talks about “protecting the business.”

Business Impact Analysis

Gartner defines the BIA as “the process of determining the criticality of business activities and associated resource requirements to ensure operational resilience and continuity of operations during and after a business disruption.”

A deep understanding of the interrelationships among applications, databases and services is essential for truly understanding what can be recovered and how quickly.

We must do more than simply define recovery time and recovery point objectives (RTOs and RPOs): we must dig deep and do the dependency analysis to truly ensure that, for example, a near-zero RTO application is supported by near-zero RTOs in the systems that feed it.

Remediation

Build vs. Buy, and Partner Selection

Options abound. Gartner breaks DRaaS providers into three groups: evolved traditional DR providers; advanced colocation/hosting providers; and hyperscale cloud providers.

With all of the market options available, Gartner also emphasizes that customers frequently retain accountability for many components, including the BIA and Risk Assessment, Application Dependency Mapping, and Recovery Test Exercises, among others. Analysis of these alternatives must include these “retained” costs.

Exercise and Test

There is no such thing as a “static” IT environment: new applications are introduced, data centers are opened and closed, cloud migrations take place, storage solutions are changed.  It is imperative that DR plans are kept current with these changes.

A DR exercise program exists to identify where vulnerabilities exist, under stress, to better prepare for the risk scenarios defined by the business and the risk management unit.

The results of these exercises must be systematically harvested and integrated into the recovery strategy, application recovery designs, application recovery procedures, and other relevant documentation including vendor evaluations.

Let us help you:

  • to define your requirements,
  • to sort through your options in solution definition and design,
  • to execute a process that satisfies all constituencies and meets your cost objectives.