Disaster Recovery: It's Not Just for Catastrophes Anymore
Business standards and compliance services provider SAI Global is benefiting from a strategic view of IT-enabled disaster recovery (DR).
SAI Global has brought advanced backup and DR best practices into play for its users and customers. This has not only provided business continuity assurance, but it has also provided beneficial data lifecycle management and virtualization efficiency improvement.
Mark Iveli, IT system engineer at SAI Global, based in Sydney, Australia, details how standardizing DR has helped improve many aspects of SAI Global's business reliability. The discussion is moderated by Dana Gardner, principal analyst at Interarbor Solutions.
Listen to the podcast (21:39 minutes).
Here are some excerpts:
Mark Iveli: When we started to get into DR, we handled it from an IT point of view, and it was very much like an iceberg. We looked at the technology and said, "This is what we need from a technology point of view." As we started to get further into the journey, we realized that there was so much more that we were overlooking.
We were working with the businesses to go through what they had, what they didn't have, what we needed from them to make sure that we could deliver what they needed. Then we started to realize it was a bigger project.
The initiative for DR started about 18 months ago with our board, and it was a directive to improve the way we had been doing things. That meant a complete review of our processes and documentation.
We had a number of business units that all had different strategies for their disaster recovery and different timings and mechanisms to report on it.
Through the use of VMware Site Recovery Manager (SRM) in the DR project, we've been able to centralize all of the DR processes, provide consistent reporting, and be able to schedule these business units to do all of their testing in parallel with each other.
So we can make a DR session, so to speak, within the business and just run through the process for them and give them their reports at the end of it.
We've installed SRM 4.1 and our installation was handled by an outsource company, VCPro. They were engaged with us to do the installation and help us get the design right from a technical point of view.
Trying to make it a daily operational activity is where the biggest challenge is, because the implementation was done in a project methodology. Handing it across to the operational teams to make it a daily operation, or a daily task, is where we're seeing some challenges.
I'm a systems engineer with SAI Global, and I've been with the company for three years. When the DR project started to gather some momentum, I asked to be a significant part of the project. I got the nod and was seconded to the DR project team because of my knowledge of VMware.
That's what my role is now -- keeping the SRM environment tuned and in line with what the business needs. That's where we're at with SRM.
The first 12 months of this journey so far has been all around cleaning up, getting our documentation up to spec, making sure that every business unit understood and was able to articulate their environments well. Then we brought all that together so that we could say what's the technology that's going to encapsulate all of these processes and documentation to deliver what the business needs, which is our recovery point objective (RPO) and for our recovery time objective (RTO).
SAI Global is an umbrella company. We have three to four main areas of interest. The first one, which we're probably most well-known for, is our Five Ticks brand, and that's the ASIS standards. The publication, the collection, the customization to your business is all done through our publishing section of the business.
That then flows into an assurance side of the business, which goes out and does auditing, training and certification against the standards that we sell.
We continue to buy new companies, and part of the acquisition trail that we have been on has been to buy some compliance businesses. That's where we provide governance risk and compliance services through the use of Board Manager, GRC Manager, Cintellate and in the U.S., Integrity 360.
Finally, last year, we acquired a company that deals solely in property settlement, and they're quite a significant section of the business that deals a lot with banks and convincing firms in handling property settlements.
So we're a little bit diverse. All three of those business sections have their own IT requirements.
Dana Gardner: Like many businesses, your brand is super important. The trust associated with your performance is something you will take seriously. So DR, backup and recovery, business continuity, are top-line issues for you.
Is there anything about what you've been doing as a company that you think makes DR specifically important for you?
Iveli: From SAI Global's point of view, because of what we do, especially around the property settlement and interactions with the banks, DR is critical for us.
Our publishing business feels that their website needs to be available five nines. When we showed them what DR is capable of doing, they really jumped on board and supported it. They put DR as high importance for them.
As far as businesses go, everyone needs to be planning for this. I read an article recently where something like 85 percent of businesses in the Asia-Pacific region don't have a proper DR strategy in place. With the events that have happened here in Australia recently with the floods, and when you look at the New Zealand earthquakes and that sort of stuff, you wonder where the businesses are putting DR and how much importance they've got on it. It's probably only going to take a significant event before they change their minds.
Gardner: I was intrigued, Mark, when you said what DR is capable of doing. Do you feel that there is a misperception, perhaps an under-appreciation of what DR is?
Iveli: The larger DR whole was just that these business units had a process in place, but it was an older process and a lot of the process was designed around a physical environment.
With SAI Global being almost 100 percent virtual, moving them into a virtual space opened their minds up to what was possible. So when we can sit down with the business units and say, "We're going to do this DR test," they ask if it will impact production. No, it won't. How is it happening? "Well, we are going to do this, this, and this in the background. And you will actually have access to your application the way it is today, it's just going to be isolated and fenced off."
They say, "This is what we've been waiting for." We can actually do this sort of stuff. They're starting to see and ask, "Can we use this to test the next version of the applications and can we test this to kind of map out our upgrade path?"
We're starting to move now into a slightly different world, but it has been the catalyst of DR that's enabled them to start thinking in these new ways, which they weren't able to do before.