Disaster Recovery Plan Checklist
By Paul Kirvan, CISA, Hon FBCI
General disaster recovery plan checklist
Is there a clearly defined, documented and approved
management process to manage a DR program?
Are any standards incorporated into the program?
Does the organization’s program have a program
management process?
Does the program comply with regulatory, legal and the
corporate policies and principles?
Are qualified professionals involved in implementing the
program?
Have accountability and responsibilities for program staff
been clearly defined and documented?
Has competence (and crisis management) been
demonstrated through exercises, tests or plan activations?
Is the program included in the annual budgeting process?
Do the program and associated plans focus on the
organization’s mission-critical activities?
Do the program suppliers (internal and/or outsourced
providers) have up-to-date and tested plans?
Does the program use IT assets to monitor and report on
status within the organization?
Are senior management roles in a disaster clearly defined,
approved and documented?
Have team roles and responsibilities been clearly defined,
approved and documented?
Has each role been assigned to a primary and alternate
individual, both trained accordingly?
Does the plan contain instructions, procedures and/or
guidelines on casualties and fatalities?
Does the plan contain instructions, procedures and/or
guidelines on staff counseling and welfare, e.g., dealing
with families, personal belongings, travel and possible
relocation?
Does the plan task list link mandatory and discretionary
tasks with the individuals assigned to them?
Does the plan have an auditable process for tracking and
recording the completion of tasks after the plan has been
activated, as well as any on-going tasks?
Does the plan have current (internal and external) contact
lists?
Does the plan include a list of key service providers and
suppliers?
Does the plan include a list of emergency responders, e.g.,
police, fire, EMT?
Does the plan provide a checklist for situation
management and decision-making?