Disaster Recovery and Business Continuity Plan

Similar documents
Business Continuity Plan

Meeting of Governing Body

Table 1: Types of Emergencies Potentially Affecting Urgent Care Centers o Chemical Emergency

BUSINESS CONTINUITY MANAGEMENT POLICY

Kings Crisis and Critical Incident Management Policy

Continuity of Operations (COOP) Planning Workshop. Division of Emergency Management Department of Military Affairs

Comprehensive Emergency Management Plan

Head of Security and Business Continuity. Incident Response and Crisis Management Ser-Sec /11/2017

Bay Mills Community College Disaster Recovery Plan. Responsible Office Contact:

BUSINESS CONTINUITY MANAGEMENT POLICY

C O O P. Exhibit A CONTINUITY OF OPERATIONS PLAN (COOP)

Business Continuity Plan

BUSINESS CONTINUITY PLAN

UNIVERSITY OF HOUSTON

Stetson University College of Law Crisis Communications Plan

RIVER LEARNING TRUST

UCL MAJOR INCIDENT TEAM MAJOR INCIDENT PLAN. Managing and Recovering from Major Incidents

Chapter 3: Business Continuity Management

Lessons Learned From Hurricane Katrina

PMA Business Continuity Plan

HR Services. Management of Health and Safety at Work Regulations (MHSW) 1999

MODELS FOR BUSINESS CONTINUITY PLANNING

THE HEATH ACADEMY TRUST HEALTH & SAFETY POLICY

Policy on Telecommuting

BUSINESS CONTINUITY PLAN

BUSINESS CONTINUITY PLANNING

Health & Safety Policy

NHS Lewisham CCG Health & Safety Policy

Business Continuity and Emergency Management. Policy Statement

Business Continuity Plan

SECTION EARTHQUAKE

Prepublication Requirements

Trust Business Continuity Plan

CONTINUITY OF OPERATIONS PLAN (COOP) Early Learning Coalition of Broward County, Inc NW 5 th Way, Suite 3400 Ft. Lauderdale, FL 33309

DISASTER PREPAREDNESS FOR MEDICAL PRACTICES

Continuity of Operations Plan for the. Kalamazoo Area Transportation Study. Approved: October 28, Kalamazoo Area Transportation Study

Emergency Preparedness Planning and Implementation (EPPI) Study Guide

Business Continuity Plan. Critical Incident Plan Moorcroft School. (Moorcroft School) Signature: Signed By: Version: 1. Status:

Health & Safety Policy

NHS ST HELENS CLINICAL COMMISSIONING GROUP BUSINESS CONTINUITY PLAN AND INCIDENT RESPONSE PLAN VERSION 6

DISASTER MANAGEMENT PLAN

College Health and Safety Committee/Board of Governors

SECTION EARTHQUAKE

Keep on Keepin On Arkansas Continuity of Operations Program

Maintain the Health, Hygiene, Safety and Security of the Working Environment

Telecommuting. Policy Statement. Reason for the Policy. Applicability of the Policy. Policy V

University of Hong Kong. Emergency Management Plan

Prepublication Requirements

COLLIN COLLEGE BUSINESS RECOVERY PLAN COLLIN HIGHER EDUCATION CENTER. Updated:

Emergency Preparedness

Emergency and Evacuation Procedures CO 500.4:

The 123 Assessment Businesses and Organizations

Health & Safety Policy

Miami-Dade County, Florida Emergency Operations Center (EOC) Continuity of Operations Plan (COOP) Template

CRITICAL INCIDENTS PLAN

CAMBRIDGESHIRE COMMUNITY SERVICES NHS TRUST BUSINESS CONTINUITY PLAN VERSION 7.0

SECTION EARTHQUAKE

COMMISSION IMPLEMENTING DECISION. of

Trust Health and Safety Policy

This policy applies to all staff and contractors working for the Agency and all persons working within its demised premises.

Critical Incident Plan

Manatee County Continuity of Operations Plan (COOP) Animal Services. for

Lone Working Policy. Director of Finance. Estates and Facilities Manager responsible for Health & Safety Date first approved by BoM 18 December 2014

RISK ASSESSMENT POLICY

Procedure: 3.4.1p2. (II.D.2a.) Business Continuity Planning

NHS Rotherham Clinical Commissioning Governing Body. Audit & Quality Assurance Committee 26 March 2014 Governing body 2 nd April 2014

St Catherine s School, Bramley WHOLE SCHOOL HEALTH & SAFETY GENERAL POLICY STATEMENT

EMERGENCY RESPONSE PLAN

Critical Incidents and Business Continuity. Academy Business Managers. Date of Approval March 2014 Approved by Board Review date March 2017

Bannock County Commissioners Office. Continuity of Operations Plan (COOP)

Selsdon Primary & Nursery School. Business Continuity Plan

Statement of Principles

HEALTH & SAFETY POLICY CONTENTS

Business Continuity Plan

LOYOLA UNIVERSITY CHICAGO EMERGENCY OPERATIONS PLAN

Unit 11: Business Sector Recovery

ASHE Resource: Implications of the CMS emergency preparedness rule

Continuity of Operations Plan

Shoreditch Park Primary School Disaster Recovery Plan

Business Continuity Management Policy and Plan Contacts removed

The Criminal Justice Information System at the Department of Public Safety and the Texas Department of Criminal Justice. May 2016 Report No.

HEALTH & SAFETY RESPONSIBILITIES AND ARRANGEMENTS

ALASKA PACIFIC UNIVERSITY EMERGENCY RESPONSE PLAN

Electrical Services Policy

SCHOOL CRISIS, EMERGENCY MANAGEMENT, AND MEDICAL EMERGENCY RESPONSE PLANS

Stifford Clays Primary School

ICT and Disaster Risk Reduction Division ESCAP

BLINN COLLEGE ADMINISTRATIVE REGULATIONS MANUAL

Health & Safety Policy. Oasis Community Learning Health & Safety Policy Version

Road Fuel Supply Disruption: Strategic Guidance for NHS Boards in Scotland. NHSScotland Resilience. Scottish Government

2018 IATA GAPS Startup Innovation Awards Terms & Conditions

NAVY CONTINUITY OF OPERATIONS PROGRAM AND POLICY

HEALTH & SAFETY ORGANISATION AND ARRANGEMENTS

University of California San Francisco Emergency Response Management Plan PART 5 COMMAND STAFF (ERP) Table of Contents

Emergency and Critical Incident Policy

Brevard College Crisis Communications Plan Standard Operating Procedures

Maintain the Health, Hygiene, Safety and Security of the Working Environment

NWL CCGS BUSINESS CONTINUITY PROCEDURES

distinction as to race, religion, age or disability, and in compliance with relevant legislation.

Incident Management Plan

Transcription:

Unit 7 Piano House 9 Brighton Terrace London SW9 8DJ www.ukcommunityfoundations.org Tel: 020 7713 9326 Register charity: 1004630 Company limited by guarantee: 2651777 Disaster Recovery and Business Continuity Plan Aims of this plan: Regularly review risks and contingency options Limit the extent of any disruption and damage Establish alternative means of operation in advance Train staff on alternative procedures. Minimise interruptions to normal operations Provide for smooth and rapid restoration of service. If, whilst using or reviewing this plan, you find any information which is incorrect or missing or if you have a problem in understanding any part of this plan please inform the Chief Executive so that it may be corrected. It is important that everyone understands their role as described in this plan. UKCF Disaster Recovery & Business Continuity Plan - 2016 1 / 7

Table of Contents 1. Policy Summary... 3 1.1. Purpose... 3 1.2. Decision-making authority... 3 1.3. Oversight and accountability... 3 1.4. Distribution and updates... 3 1.5. Responsibilities during the recovery period... 4 1.6. The first priority in a disaster situation is to ensure safe evacuation of all personnel... 5 2. Recovery Management: Goals & Priorities... 5 3. Finance and Legal Risk Management... 7 3.1. Insurance... 7 4. Physical Plant Risk Management (buildings, networks)... 7 4.1. Short term office premises... 7 4.2. Recovery and back up of data (Main and terminal servers)... 8 4.3. Email and calendar... 8 4.4. Salesforce (CRM System)... 8 4.5. Telephone... 8 5. Grantmaking Procedures... 9 6. External Communications... 9 7. Appendices... 10 8.1. Trustee contact information... 11 8.2. Staff contact information and call tree... 12 8.3. Service provider account and contact information... 13 UKCF Disaster Recovery & Business Continuity Plan - 2016 2 / 7

1. Policy Summary Purpose A Business Continuity Plan has been designed to be used in the event of a disaster affecting UKCF when normal services cannot be delivered from the site due to one or more of the following: Loss of telephone, internet, electricity, heating or Damage of the office premises for any reason This plan contains all the information necessary to prioritise and restore operational services in the event of a serious disruption of computer services, and plans for a complete disruption scenario: A fire destroys premises and contents. Decision-making authority The decision to initiate business continuity procedures will be taken by the CEO after assessing the situation. In lieu of the CEO being unavailable oversight and responsibility will be assumed by: Director of Operations & Programmes, followed by Head of Finance, followed by Other senior management team staff (SMT) This decision to initiate business continuity procedures will be communicated as widely and promptly as possible to all staff via telephone, text or email using the call tree described on page 12. All staff will follow the procedures contained in this plan until business recovery is complete or until instructed otherwise by the CEO or direct line mangers. Various staff members are likely to be assigned responsibility for implementing or coordinating the procedures outlined in this plan and are responsible for reporting to the CEO during a disaster Oversight and accountability This plan must be kept current with daily operating procedures. It is the responsibility of the CEO to ensure that procedures are in place to keep this plan up to date. Distribution and updates The CEO is responsible for distributing this plan. UKCF Disaster Recovery & Business Continuity Plan - 2016 3 / 7

The Chair, trustees and all staff will receive an electronic copy of the plan by email. A copy of the plan should be kept in the homes of the Chair, trustees and staff. At least one current hard copy is to be kept in a central place at the main workplace, easily accessed by staff. When you receive an updated version please ensure you remove and shred or delete the older version. Responsibilities during the recovery period CEO is responsible for: Defining the problem, the extent of the disruption, its consequences and the probable implications for the foreseeable future. Taking the decision to implement disaster recovery procedures. Deputising staff as required in order to ensure all staff are informed and understand their roles and instructions. Informing family members in the event of staff injury. Making a report to the Chair. Directing external communications with the Head of External Affairs. Determining the return to normal operations. Documenting decisions and progress for written report to the Board. All staff are responsible for: Assessing the immediate nature and extent of the problem and alerting the CEO as soon as possible. Resuming normal working procedures from home via remote access networks, if possible. Following procedures laid out in this plan and instructions from the CEO, assigned deputies or managers. Making sensible judgments to determine what activities are appropriate based on the nature and extent of the disruption. Whilst the CEO holds ultimate responsibility, various staff may be deputized to implement or coordinate the procedures and responsibilities outlined in this plan. SMT and any other deputies are responsible for reporting to the CEO during a disaster. This plan anticipates 3 areas of disaster recovery: Finance, Systems and Physical premises Grant Management SMT Support Staff Member External Communications UKCF Disaster Recovery & Business Continuity Plan - 2016 4 / 7

The first priority in a disaster situation is to ensure safe evacuation of all personnel In the event of a major physical disruption, standard emergency procedures must be followed. This means immediately: 1. Activating the standard alarm procedures for the building to ensure that Medical, Security and Safety departments and emergency authorities are correctly alerted. 2. If necessary, evacuating the premises following the laid down evacuation procedures and assemble outside at the designated location, if it is safe to do so. 3. If it is safe to do so, switch off computer equipment before leaving the premises. 2. Recovery Management: Goals & Priorities A disaster is defined as an incident that results in the loss of computer processing and /or access at the office site, to the extent that relocation of work must be considered. A disaster can result from a number of accidental, malicious or environmental events such as fire, flood, terrorist attack, human error, software or hardware failures. The primary objective of this Business Continuity Plan is to ensure the continued operation of identified business critical systems in the event of a disaster. Specific goals of the plan are: To have key business processes operations via home working by staff within 1 working day of a standby invocation To minimize the disruption to our business, our grant recipients and our donors To operate by remote access or a temporary facility for as long as is required To reinstate full operations in the usual office or another premises as soon as practical. Priorities: Risk and Impact Assessment Under the direction of the CEO, senior staff have identified and documented: Key services, critical activities and supporting resources The main risks that would impact on UKCF s ability to deliver its key services The estimated length of time we can manage a disruption to each key service The resources required to resume the key services. Whilst the CEO has ultimate responsibility for recovering assets where possible, it is likely that some of these activities will be deputized to staff and /or service providers during the recovery process. Once the physical safety of people is secured, the first order of business is to notify our insurance company to document the beginning of a future claim. IT and Data Recovery Office Space and Access to the Internet UKCF Disaster Recovery & Business Continuity Plan - 2016 5 / 7

3. Finance and Legal Risk Management Insurance 4. Physical Plant Risk Management (buildings, networks) Short term office premises Recovery and back up of data (Main and terminal servers) Email and calendar Emails can be accessed via remote working. Salesforce (CRM System) Already exists in the cloud; Normal access should be available. Salesforce Supplier support@hyphen8.com Elaine Forth, Team Lead elaine@hyphen8.com Telephone 5. Grantmaking Procedures Assessing Priorities 6. External Communications The CEO is responsible for ensuring that there is no miscommunications that could damage the image of UKCF, specifically handling any media enquiries and updating the web site. The CEO will delegate some of this to the Head of External Communications. The CEO has oversight for: External communications. Making statements to local or national media, as appropriate. Any other public relations. UKCF Disaster Recovery & Business Continuity Plan - 2016 6 / 7

Ensuring website, email signatures and social media (Twitter) provide details of temporary relocation and contact information as necessary. In the event of a disaster recovery situation, all media enquiries would be directed to the Head of External Affairs or Communications Officer. The CEO will be the UKCF spokesperson. If unavailable then the Chair would lead. If unavailable then one of the Vice-Chairs. If they're all unavailable, then one of the management team at UKCF. Web site hosting: Morgan Interent Design zack@mid.co.uk UKCF Disaster Recovery & Business Continuity Plan - 2016 7 / 7

2024 © careersdocbox.com Privacy Policy | Terms of Service | Feedback