Disaster preparedness, disaster recovery, business continuity and business resilience what do they all have in common?

I have come across some interesting solutions for disaster recovery (DR) and business continuity (BC) in the last 15 years as an ICT and security expert.

Some of them, although slightly amusing, could have been disastrous for the business that people believed were their protection.

There are 4 areas when it comes to protecting your business.

These 4 areas are:

Disaster preparedness – looking at your business and putting what could happen into perspective. A power failure is more likely to happen that an Alien invasion. This is the risk analysis component of both the DR and BC and looks at if something was to happen, what is the probability of it happening and how can we make sure that we have a solution (mitigate the risk) for the problem.

The next level is Disaster Recovery – this is the plan that will be implemented if one of the risks that you have thought about happens. Taking the power failure again, how do you ensure that all of your critical systems are going to function when the power goes off. Do you have redundant power supply systems, do you have uninterrupted power supplies ( battery operated systems that kick in when the power failure happens), in some environments where power is exceedingly unpredictable do you have a backup generator?

The next component of protecting your business is the Business Continuity Plan. This looks at your business and works out that, when that disaster happens, what are the steps needed to ensure that the business does not suffer. It calculates the what is critical to delivering systems back to management in an order of priority. It is used to calculate how fast you need critical components of your business to be restored, in what order and how long the systems can be down before they start to have an impact on your bottom line.

The above plans are what you need to get your business up and running again in the case of a disaster.

The business resilience is a look at your business culture.

Have you noticed that there are some businesses out there that seem to have rock star staff, these are the ones with the can do attitudes, the smiling always capable people that you cannot get for your business because they love their jobs.

Business resilience is created from the top down, it is the delivery of the business culture from management all the way down to the worker bees at the bottom of the scale.

In addition to that it is also an understanding from the worker bees that a suggestion from them will be looked at, implemented, and supported by management.

These are the businesses that understand that the people at the coal face know what they are doing, they see what the customers are seeing and they then keep management informed with new ideas and processes that will benefit the business.

A resilient business is not only going to be able to implement a DRP or a BCP better or more efficiently but they are also capable of seeing and delivering change to the business so that they can take opportunities that their competition would not dream of.

They are the typical US Recon Marine in civilian clothing they “adapt, improvise and overcome” anything to make their business better.

A good business will have some of these components in place, a brilliant business will have all of these components and will be looking for bigger and better opportunities in their niche market.

What is your business like?

Roger Smith is the CEO of R & I ICT Consulting Services, Amazon #1 selling author on Cybercrime, author of the Digital Security Toolbox and author of the SME Digital Security Framework.   Rapid Restart Appliance Creator.   He is a Speaker, Author, Teacher and Educator on cybercrime and how to protect yourself from the digital world. 

Roger Smith, is an educator. Teaching students at ADFA (UNSW) and showing them how vulnerable they are to cybercrime.

He is also CEO at R & I ICT Consulting Services Pty Ltd, an Amazon #1 author on Cybercrime and founder of the SME Security Framework. He is a Consultant who specialises in inexpensive and highly effective security strategies for small and medium businesses and not for profit organisations.

He has developed and authored the SME Security Framework and the Security Policy Training Course which are considered to be the definitive guides to helping SME's protect their organisation using the principles of Technology, Management, Adaptability and Compliance.