The objective of disaster recovery review and planning is to evaluate the organization’s ability to continue data processing operations under adequate security protection in the event of an extended computer disruption. The emphasis is on:
- Review of provisions, procedures and staffing established to support recovery from an extended computer operation disruption.
- Assessment of the adequacy of the disaster contingency plan.
- Identification of areas of potential exposure in the disaster contingency plan.
- Provision of detailed recommendations to remedy identified exposure.