A major manufacturer and distributer of computer components needed to develop a Business Continuity and Disaster Recovery Program. While they had a basic emergency response procedure in place, they realized that a more comprehensive approach was needed to fully safeguard their daily operations, international research and development teams, and ability to support their customers. One major concern was a desire to protect their research and intellectual property as well as their operational data. Consequently, their Data Center and network operations were a primary consideration.
MLC was selected based on their experience in developing Business Continuity Programs and their reputation in the industry. The first step of the process was to conduct a thorough Business Impact Analysis and Risk Assessment of the organization. Since the project was being managed by the Information Technology Division, a key output of the process was to provide IT with a complete list of applications and data priorities that supported the critical operations of the company. Once the BIA was completed, MLC developed Business Resumption Plans for the departments based on their prioritized processes. Further, since the company was ISO 9000 certified, it was important to ensure that all documentation developed for the program met ISO requirements. Consequently, MLC worked with the company’s ISO Compliance Team to ensure that all Business Resumption procedures met ISO documentation standards.
MLC also worked closely with IT to ensure that their IT Disaster Recovery processes and plans were upgraded and that personnel were trained to implement their contingency procedures. Finally, MLC developed and implemented a disaster exercise to further train executives and staff, as well as to stress-test their knowledge and procedures.
As a result of the program, the company was able to meet its ISO requirements and all personnel from Executive Management to the staff level were assured that they would be able to confidently implement their Business Continuity Program if an event occurred. Further, IT was able to institute additional safeguards to more fully protect the organization’s research and intellectual property. Additionally, IT now had a list of their most critical applications and data from the perspective of each business unit. This allowed IT to tailor their backup and recovery processes to better meet the needs of all users.