Unified Messaging by liamei12345

VIEWS: 3 PAGES: 35

									    Telecommunications
      Disaster Recovery


Protecting Your Investments in
       Network Infrastructures




       Paul Kirvan, FBCI, CBCP, CISSP
                Paul Kirvan Associates
Agenda

   Introduction
   Getting Started
   Risks and Impacts
   Developing Strategies
   Going Forward – Summary




          Copyright 2009, Paul Kirvan Associates, Inc.   2
Getting Started

   Identify the need
   Secure management support
   Establish planning team
   Develop project plan
   Execute the plan
   Follow up and measure plan
    effectiveness




           Copyright 2009, Paul Kirvan Associates, Inc.   3
                     Risks and
                      Impacts




Copyright 2009, Paul Kirvan Associates, Inc.   4
Risks and Impacts
   Disasters happen when
    you least expect them
   Unplanned events happen
    every day
   You won’t know about
    them until it’s too late
   Conduct a risk assessment…
   …Plus a gap analysis




            Copyright 2009, Paul Kirvan Associates, Inc.   5
Risks and Impacts
                                                              Things You Can See


   Fire                                                    Equipment Failure
   Flood                                                   Backhoe “fade”
   Power Outage                                            Human Error
   Earthquake                                              Labor Action
   Severe Weather                                          Network Failure
   Vandalism                                               Theft




          Copyright 2009, Paul Kirvan Associates, Inc.                             6
    Risks and Impacts
                                                                   Things You Can’t
                                                                     Always See


   Fan Failure                                                 Software Changes
   Air Conditioning Failure                                    Temperature “Creep”
   Tenant-created Failure                                      Humidity “Creep”
   Unauthorized Access                                         Power Phase Loss
   Accidental Cable Removal  Maintenance Processes
   Equipment Power Outage  Systems Growth
   Loss of Synchronization                                     Cybercrimes




              Copyright 2009, Paul Kirvan Associates, Inc.                             7
Risks and Impacts
 Loss of life
 Loss of revenue

 Loss of customers

 Loss of competitive position,
  market share
 Cannot recover the business




         Copyright 2009, Paul Kirvan Associates, Inc.   8
Risks and Impacts

Typical Large Network Outage
   1.76 outages per month
   Outages last over 90 minutes
   Impact 33% of user base
   Monthly impact ranges from $80K to
    $5.6 million dollars

Source: Infonetics Research




                 Copyright 2009, Paul Kirvan Associates, Inc.   9
Risks and Impacts

Typical Small Network Outage
   +200 employees
   Three hours of downtime per month
   Impact 100 users per outage
   Monthly impact to business of $16K+
   Impact to business is not measured in
    just dollars
 Source: Performance Technologies, Inc.




                 Copyright 2009, Paul Kirvan Associates, Inc.   10
 Risks and Impacts
 Computing the Cost of Downtime
Daily Revenue $22,000/day                                          $2,750/hour
Overhead per employee @ 210 x $10.21/hr                             $2,144/hr
Average pay per employee @210 x $14.75/hr                           $3,097/hr

Cost of three hours of downtime affecting 50% of employees
Lost Revenue                                                       3 hr x $2,750
Cost of Overhead                                                   3 hr x $1,072
Cost of Pay                                                        3 hr x $1,548
Total                                                                $16,110


Source: Performance Technologies, Inc.


                    Copyright 2009, Paul Kirvan Associates, Inc.                   11
Risks and Impacts
                     Nuclear EMP attack effects a wide area and
Solar Flare
                     many infrastructure nodes simultaneously




              Nuclear EMP                                                       EM terrorist attack
                                                                               aimed at a specific
                                                                               infrastructure node
         Geomagnetic               Individual Systems




                Power Grid /                                     Distributed       EM Terrorism
                 Telecom                                          Networks




                  Copyright 2009, Paul Kirvan Associates, Inc.                                    12
     Risks and Impacts
                                                                                                            Local Exchange
   Customer                                                                  S
                                                                                 Q    D
                                                                                      i
                                                                                              M
                                                                                              u
                                                                      1          u
                2/4 wire/copper                   Analog                     a   a    g       l
                                                                       .              i
                                                  Voice                .     m n              t
                                                  Switch                     p   t
                                                                                      t       i         1.544 Mbs
                                                                      2      l        i       p
                                                                      4          i    s
                                                                             e   z    e       l
                                                                                 e            e
                                                                            PCM Multiplexer   x
                                                                                                         1.544 Mbs
  PBX              T1/E1 Digital
                  (copper/fiber)                        S Q D               Digital
                                                                                                  M
                                                                                                                        Digital
                                                                                                  u
                                                        S Q D               Voice                 l
                                                        S Q D                                     t                     Cross
                                                                            Switch                i    1.544 Mbs
              ISDN Copper/fiber                          Digital                                  p
                                                                                                  l
                                                                                                                       Connect
                                                         Digital
                                                         Digital
                                                                                                  e
                                                                                                  x
                                                                                                                       System
                                                                                                                        (DCS)
                                                         Channel                 Digital
                                                           Unit                 Data-only             1.544 Mbs
                                                                                Network

                                                           Packet Switched (PSDN)
                                                             Public Data Network                      1.544 Mbs

     Router                                                    FRAME RELAY
                                                             Public Data Network
                                                                                                      1.544 Mbs
    LAN
                                                             CELL RELAY (SMDS)
                                                             Public Data Network                  45 Mbs - 2Gbs        SONET
                                                                                                                        Cross
Broadband / fiber                                               B-ISDN / ATM                                           inside
                                                                                                                       Connect
                                                                                                                       System
                                                             Public Data Network                  45 Mbs - 2Gbs


                                                                                                                     Internet
                             Copyright 2009, Paul Kirvan Associates, Inc.                                                         13
                 Developing
                 Strategies




Copyright 2009, Paul Kirvan Associates, Inc.   14
  Developing Strategies
 Primary carriers                                 Call redirection
 Alternate carriers                               Dial backup, e.g., ISDN, POTS
 Diverse routing                                  Centrex as backup service
 Backup systems                                   Wireless technology
 Hardware redundancy                              Wireless local access
 Off-site storage                                 Hot/warm/cold sites
 Spare components                                 Server/disk/tape mirroring
 Voice over IP                                    Virtualization



              Copyright 2009, Paul Kirvan Associates, Inc.                       15
Developing Strategies
                                                                                           Case Study
                                                                             Network Diversity – Before
                                Main Campus




                                                          Tunnel
                                                                              New Building

 Central                                                                                     Manhole
  Park

                                  98th Street
                 Fifth Avenue




                                                            Madison Avenue




                                                                                               Park Avenue
           Copyright 2009, Paul Kirvan Associates, Inc.                                                      16
Developing Strategies
                                                                                         Case Study
                                                                             Network Diversity – After
                                Main Campus




                                                          Tunnel
                                                                             New Building

 Central                                                                                    Manhole
  Park

                                  98th Street
                 Fifth Avenue




                                                            Madison Avenue




                                                                                            Park Avenue
           Copyright 2009, Paul Kirvan Associates, Inc.                                                   17
Developing Strategies




        Copyright 2009, Paul Kirvan Associates, Inc.   18
Developing Strategies

 Wireline solutions
    Local/long distance carrier resilience
    Carrier emergency recovery (Telecom Service
     Priority)
    Broadband network services (e.g., SONET, dark
     fiber)
    Digital PBX systems
    Voice over IP systems

    Automated notification systems




           Copyright 2009, Paul Kirvan Associates, Inc.   19
Developing Strategies

     More wireline solutions
         Overhead paging
         ISDN / DSL
         Cable TV
         Infrastructure diversity
         Data network diversity
         Centrex service, IP Centrex




            Copyright 2009, Paul Kirvan Associates, Inc.   20
Developing Strategies
    Wireless solutions
        Cellular (traditional, Sprint Nextel, GSM)
        Blackberry (e-mail)
        Satellite phones (Globalstar, Inmarsat)
        Free-space transmission (e.g., microwave, infrared)
        OnStar (GPS)
        Amateur (ham) radio
        Radio paging (one-way, two-way)
        Wireless PBX extensions (Polycom)




             Copyright 2009, Paul Kirvan Associates, Inc.      21
Developing Strategies
    Protecting Local Access
        Multiple carriers
        Alternate circuit paths
        Local call redirection services
        800 redirection services
        Emergency announcements




                                                            X
                                 Emergency
                                  message


             Copyright 2009, Paul Kirvan Associates, Inc.       22
Developing Strategies
    Are You a Resilient Business?
        Decentralized data centers
        Linkages via metropolitan area networks
        Branch office connectivity via VPNs
        Remote offices (e.g., home, hotel) via VPNs
        Voice traffic rerouted via IP to alternate sites
        Virtualization of technology assets




             Copyright 2009, Paul Kirvan Associates, Inc.   23
Developing Strategies
    Analyze Your Supply Chain
        Where are your principal facilities?
        Who is involved?
        What is communicated?
        What time sensitivities exist?
        What are critical processes?
        How long can they be unavailable?
        How will you re-establish them?
        What about non-critical processes
        How will you handle them?
        What is this worth?




             Copyright 2009, Paul Kirvan Associates, Inc.   24
Developing Strategies
   You can
       Build your own network redundancy and resilience
       Contract in advance for emergency facilities and
        support services, e.g., hot site
       Carry relevant insurance coverage
       Utilize multiple suppliers (do they have BC plans?)
       Develop emergency plans and exercise them
       Eliminate single points of failure
       Establish automatic failover
       Build adaptable network infrastructures




             Copyright 2009, Paul Kirvan Associates, Inc.     25
Developing Strategies
   You can
       Develop backups for voice, data, and IP traffic
       Ensure backup for call / contact centers
       Build capability for “instant offices” in other sites,
        hotels, conference centers, homes, etc.
       Ensure uninterrupted availability of critical applications
        and systems
       Back up e-mail services
       Ensure access to Web sites
       Arrange for emergency notification services




              Copyright 2009, Paul Kirvan Associates, Inc.           26
Developing Strategies
   Do you have the budget?
       Traditional voice, data services
       Resilient / diverse / redundant facilities
       High-capacity services, e.g., SONET, T1/T3, Metro
        Ethernet, CATV
       Design network infrastructure, capabilities
       Can you also support video?
       Can you link data centers?
       Can you link third party facilities?
       Verifiable end-to-end diversity?




             Copyright 2009, Paul Kirvan Associates, Inc.   27
Developing Strategies
   Protecting your WAN
       Leased circuits, e.g., T1/T3, SONET
       ISDN or asynchronous transfer mode (ATM)
        connection-oriented services
       High-level infrastructures, such as Multiprotocol Label
        Switching (MPLS)
                                          Leased lines
                                          Dark fiber

                                               Layer 2
                                               Ethernet


                                               Layer 3
                                               MPLS

             Copyright 2009, Paul Kirvan Associates, Inc.         28
Developing Strategies

   Protecting your WAN
       Best WAN designs use mesh architecture
       Redundant rings
       Layer 2 services, FR and ATM, provide logical, PL-like
        services via PVCs; good for pt-to-pt networks
       Layer 3 services, typically IP-based VPNs, use shared
        infrastructures; good for enterprise-level networks with
        high security, QoS, reliability




             Copyright 2009, Paul Kirvan Associates, Inc.          29
Developing Strategies

   Best practices
       Understand user requirements
       Understand carrier services, advantages and
        limitations
       Use Layer 3 (Internet, IP) services at equipment
        interconnection points
       Build redundancy and diversity wherever possible
       Use point-to-point circuits when cost-effective
       Establish network security policies; review regularly




             Copyright 2009, Paul Kirvan Associates, Inc.       30
Developing Strategies

   Best practices
       Evaluate carrier service levels, security
       Install new equipment according to specs
       Software patch management
       Delete former employee and contractor access
        privileges immediately upon their departure
       Exercise care when positioning wireless access points




             Copyright 2009, Paul Kirvan Associates, Inc.       31
Developing Strategies

   Best practices
       Back up critical data regularly
       Ensure that System Event Logging is on
       Install and utilize intrusion detection systems
       Perform periodic security assessment
       Test security plans and procedures
       Conduct background checks for employees with
        access to critical data




             Copyright 2009, Paul Kirvan Associates, Inc.   32
Summary – Going Forward




 Copyright 2009, Paul Kirvan Associates, Inc.   33
Summary
   Infrastructure assessment, gap analysis
   Identify risks, single points of failure
   Develop disaster recovery policies
   Develop plans and implement them
   Emphasize network redundancy and resilience
   Focus on network security, perimeter protection
   Focus on voice, data, IP, wireless and convergence
   Document/exercise plans regularly
   Keep plans up to date




            Copyright 2009, Paul Kirvan Associates, Inc.   34
Thank you




                                    Paul Kirvan Associates
                                   Email pkirvan@msn.com
                                      Cell +1 908-902-1545

       Copyright 2009, Paul Kirvan Associates, Inc.          35

								
To top