Risks to data include not only natural disasters but also data disruptions and outages due to data center outages, hardware or software failures, network security breaches, etc.
In any disaster, it is critical for the continuity of your business to have an IT risk mitigation strategy.
Critical data and records: After looking at your Maximum Tolerable Downtime (MTD) and the cost of disruptions, you should have a solid understanding of the impact a loss of critical data would have on the organization. In addition to this, it is important to assess legal and regulatory requirements related to critical data (medical data, personal financial data, etc.). It is imperative to review your proposed recovery plan, as it’s possible to have gaps in certain areas.
Critical Systems and Infrastructure: Once you have a solid understanding of your data management and protection needs within the Disaster Recovery Planning process, you can start to evaluate hardware/software solutions, vendors, and costs. If you are able to identify solutions for these areas that meet your needs for the next three to five years, you’ll be doing well on the planning horizon.