This week marks the one-year anniversary of Superstorm Sandy. A year ago, a late-season post-tropical hurricane swept through the Caribbean and up the East Coast of the United States; it was the deadliest and most destructive hurricane of 2012 making news for the devastation and loss of lives it caused – it left dozens dead, thousands homeless and millions without power. Other than the people that were affected, businesses also were severely impacted by the devastating power of the storm. In fact, many businesses suffered because of lack of a good contingency plan and consequent loss of all their data. Some were never able to re-open their doors.
Sandy demonstrated that preparedness is essential when disaster strikes. Having a recovery plan can make the difference for a business between continuing operations and closing for good. The aftermath of Sandy was that many businesses began reevaluating their emergency procedures and strategies. The natural disaster served as a warning for all managers that more time must be devoted to contingency plans (i.e., Business Continuity (BC) and/or Disaster Recovery (DR) plan).
It is fair to say that a year after, the majority of businesses have learned from prior failures; hopefully, since Hurricane Sandy, they have made their company more secure and able to withstand disasters,
Putting the BC/DR plan into action during an emergency is in the best interest of any business, of any size and industry. Prior to their physical locations being destroyed and data lost from the storm, solutions should have been implemented and the communication channels with local, state and federal authorities should have been kept open to coordinate response in times of such a crisis.
Solutions and strategies must address different needs and points to be effective.
First, data storage and backups need to be addressed. It is important for any organization to have files backed up in different ways and locations in order to retain data even if the headquarters is destroyed or not operational. Data can be also saved in the cloud so that it can be accessed by legitimate users from alternate locations.
A disaster recovery plan (DRP) must be devised. If the data are stored elsewhere and are safe, employees and managers still need to be able to access and use them for a business to remain operational. If the data are in the cloud, then employees should have permission to retrieve the files they need from any computer or mobile device. If data are stored on hard drives or tapes in safe, at an alternative location, it is important that a number of employees have the permits necessary to access and retrieve them safely for use. ACLs (access control lists) need to be prepared and kept updated, continuously.
Business continuity is also an important aspect. In the midst of an emergency, it is important to have a clear picture of everyone’s role, permissions and chain of command. Emergency protocols must be developed and reviewed periodically, so that when disaster strikes, operations run a bit smoother. Things like meeting points, alternative work locations and contact lists must be discussed in advance, so that everyone is clear on what is expected of them even when confusion reigns.
Hopefully, all businesses, especially those affected by the storm, have already gone through all the steps necessary to secure their business in emergencies. The images of the devastation caused by Hurricane Sandy should stand as a reminder of how quickly such a disaster can bring down businesses if they are not fully prepared.
Edited by Rory J. Thompson