Unified Messaging
Document Sample
Telecommunications
Disaster Recovery
Protecting Your Investments in
Network Infrastructures
Paul Kirvan, FBCI, CBCP, CISSP
Paul Kirvan Associates
Agenda
Introduction
Getting Started
Risks and Impacts
Developing Strategies
Going Forward – Summary
Copyright 2009, Paul Kirvan Associates, Inc. 2
Getting Started
Identify the need
Secure management support
Establish planning team
Develop project plan
Execute the plan
Follow up and measure plan
effectiveness
Copyright 2009, Paul Kirvan Associates, Inc. 3
Risks and
Impacts
Copyright 2009, Paul Kirvan Associates, Inc. 4
Risks and Impacts
Disasters happen when
you least expect them
Unplanned events happen
every day
You won’t know about
them until it’s too late
Conduct a risk assessment…
…Plus a gap analysis
Copyright 2009, Paul Kirvan Associates, Inc. 5
Risks and Impacts
Things You Can See
Fire Equipment Failure
Flood Backhoe “fade”
Power Outage Human Error
Earthquake Labor Action
Severe Weather Network Failure
Vandalism Theft
Copyright 2009, Paul Kirvan Associates, Inc. 6
Risks and Impacts
Things You Can’t
Always See
Fan Failure Software Changes
Air Conditioning Failure Temperature “Creep”
Tenant-created Failure Humidity “Creep”
Unauthorized Access Power Phase Loss
Accidental Cable Removal Maintenance Processes
Equipment Power Outage Systems Growth
Loss of Synchronization Cybercrimes
Copyright 2009, Paul Kirvan Associates, Inc. 7
Risks and Impacts
Loss of life
Loss of revenue
Loss of customers
Loss of competitive position,
market share
Cannot recover the business
Copyright 2009, Paul Kirvan Associates, Inc. 8
Risks and Impacts
Typical Large Network Outage
1.76 outages per month
Outages last over 90 minutes
Impact 33% of user base
Monthly impact ranges from $80K to
$5.6 million dollars
Source: Infonetics Research
Copyright 2009, Paul Kirvan Associates, Inc. 9
Risks and Impacts
Typical Small Network Outage
+200 employees
Three hours of downtime per month
Impact 100 users per outage
Monthly impact to business of $16K+
Impact to business is not measured in
just dollars
Source: Performance Technologies, Inc.
Copyright 2009, Paul Kirvan Associates, Inc. 10
Risks and Impacts
Computing the Cost of Downtime
Daily Revenue $22,000/day $2,750/hour
Overhead per employee @ 210 x $10.21/hr $2,144/hr
Average pay per employee @210 x $14.75/hr $3,097/hr
Cost of three hours of downtime affecting 50% of employees
Lost Revenue 3 hr x $2,750
Cost of Overhead 3 hr x $1,072
Cost of Pay 3 hr x $1,548
Total $16,110
Source: Performance Technologies, Inc.
Copyright 2009, Paul Kirvan Associates, Inc. 11
Risks and Impacts
Nuclear EMP attack effects a wide area and
Solar Flare
many infrastructure nodes simultaneously
Nuclear EMP EM terrorist attack
aimed at a specific
infrastructure node
Geomagnetic Individual Systems
Power Grid / Distributed EM Terrorism
Telecom Networks
Copyright 2009, Paul Kirvan Associates, Inc. 12
Risks and Impacts
Local Exchange
Customer S
Q D
i
M
u
1 u
2/4 wire/copper Analog a a g l
. i
Voice . m n t
Switch p t
t i 1.544 Mbs
2 l i p
4 i s
e z e l
e e
PCM Multiplexer x
1.544 Mbs
PBX T1/E1 Digital
(copper/fiber) S Q D Digital
M
Digital
u
S Q D Voice l
S Q D t Cross
Switch i 1.544 Mbs
ISDN Copper/fiber Digital p
l
Connect
Digital
Digital
e
x
System
(DCS)
Channel Digital
Unit Data-only 1.544 Mbs
Network
Packet Switched (PSDN)
Public Data Network 1.544 Mbs
Router FRAME RELAY
Public Data Network
1.544 Mbs
LAN
CELL RELAY (SMDS)
Public Data Network 45 Mbs - 2Gbs SONET
Cross
Broadband / fiber B-ISDN / ATM inside
Connect
System
Public Data Network 45 Mbs - 2Gbs
Internet
Copyright 2009, Paul Kirvan Associates, Inc. 13
Developing
Strategies
Copyright 2009, Paul Kirvan Associates, Inc. 14
Developing Strategies
Primary carriers Call redirection
Alternate carriers Dial backup, e.g., ISDN, POTS
Diverse routing Centrex as backup service
Backup systems Wireless technology
Hardware redundancy Wireless local access
Off-site storage Hot/warm/cold sites
Spare components Server/disk/tape mirroring
Voice over IP Virtualization
Copyright 2009, Paul Kirvan Associates, Inc. 15
Developing Strategies
Case Study
Network Diversity – Before
Main Campus
Tunnel
New Building
Central Manhole
Park
98th Street
Fifth Avenue
Madison Avenue
Park Avenue
Copyright 2009, Paul Kirvan Associates, Inc. 16
Developing Strategies
Case Study
Network Diversity – After
Main Campus
Tunnel
New Building
Central Manhole
Park
98th Street
Fifth Avenue
Madison Avenue
Park Avenue
Copyright 2009, Paul Kirvan Associates, Inc. 17
Developing Strategies
Copyright 2009, Paul Kirvan Associates, Inc. 18
Developing Strategies
Wireline solutions
Local/long distance carrier resilience
Carrier emergency recovery (Telecom Service
Priority)
Broadband network services (e.g., SONET, dark
fiber)
Digital PBX systems
Voice over IP systems
Automated notification systems
Copyright 2009, Paul Kirvan Associates, Inc. 19
Developing Strategies
More wireline solutions
Overhead paging
ISDN / DSL
Cable TV
Infrastructure diversity
Data network diversity
Centrex service, IP Centrex
Copyright 2009, Paul Kirvan Associates, Inc. 20
Developing Strategies
Wireless solutions
Cellular (traditional, Sprint Nextel, GSM)
Blackberry (e-mail)
Satellite phones (Globalstar, Inmarsat)
Free-space transmission (e.g., microwave, infrared)
OnStar (GPS)
Amateur (ham) radio
Radio paging (one-way, two-way)
Wireless PBX extensions (Polycom)
Copyright 2009, Paul Kirvan Associates, Inc. 21
Developing Strategies
Protecting Local Access
Multiple carriers
Alternate circuit paths
Local call redirection services
800 redirection services
Emergency announcements
X
Emergency
message
Copyright 2009, Paul Kirvan Associates, Inc. 22
Developing Strategies
Are You a Resilient Business?
Decentralized data centers
Linkages via metropolitan area networks
Branch office connectivity via VPNs
Remote offices (e.g., home, hotel) via VPNs
Voice traffic rerouted via IP to alternate sites
Virtualization of technology assets
Copyright 2009, Paul Kirvan Associates, Inc. 23
Developing Strategies
Analyze Your Supply Chain
Where are your principal facilities?
Who is involved?
What is communicated?
What time sensitivities exist?
What are critical processes?
How long can they be unavailable?
How will you re-establish them?
What about non-critical processes
How will you handle them?
What is this worth?
Copyright 2009, Paul Kirvan Associates, Inc. 24
Developing Strategies
You can
Build your own network redundancy and resilience
Contract in advance for emergency facilities and
support services, e.g., hot site
Carry relevant insurance coverage
Utilize multiple suppliers (do they have BC plans?)
Develop emergency plans and exercise them
Eliminate single points of failure
Establish automatic failover
Build adaptable network infrastructures
Copyright 2009, Paul Kirvan Associates, Inc. 25
Developing Strategies
You can
Develop backups for voice, data, and IP traffic
Ensure backup for call / contact centers
Build capability for “instant offices” in other sites,
hotels, conference centers, homes, etc.
Ensure uninterrupted availability of critical applications
and systems
Back up e-mail services
Ensure access to Web sites
Arrange for emergency notification services
Copyright 2009, Paul Kirvan Associates, Inc. 26
Developing Strategies
Do you have the budget?
Traditional voice, data services
Resilient / diverse / redundant facilities
High-capacity services, e.g., SONET, T1/T3, Metro
Ethernet, CATV
Design network infrastructure, capabilities
Can you also support video?
Can you link data centers?
Can you link third party facilities?
Verifiable end-to-end diversity?
Copyright 2009, Paul Kirvan Associates, Inc. 27
Developing Strategies
Protecting your WAN
Leased circuits, e.g., T1/T3, SONET
ISDN or asynchronous transfer mode (ATM)
connection-oriented services
High-level infrastructures, such as Multiprotocol Label
Switching (MPLS)
Leased lines
Dark fiber
Layer 2
Ethernet
Layer 3
MPLS
Copyright 2009, Paul Kirvan Associates, Inc. 28
Developing Strategies
Protecting your WAN
Best WAN designs use mesh architecture
Redundant rings
Layer 2 services, FR and ATM, provide logical, PL-like
services via PVCs; good for pt-to-pt networks
Layer 3 services, typically IP-based VPNs, use shared
infrastructures; good for enterprise-level networks with
high security, QoS, reliability
Copyright 2009, Paul Kirvan Associates, Inc. 29
Developing Strategies
Best practices
Understand user requirements
Understand carrier services, advantages and
limitations
Use Layer 3 (Internet, IP) services at equipment
interconnection points
Build redundancy and diversity wherever possible
Use point-to-point circuits when cost-effective
Establish network security policies; review regularly
Copyright 2009, Paul Kirvan Associates, Inc. 30
Developing Strategies
Best practices
Evaluate carrier service levels, security
Install new equipment according to specs
Software patch management
Delete former employee and contractor access
privileges immediately upon their departure
Exercise care when positioning wireless access points
Copyright 2009, Paul Kirvan Associates, Inc. 31
Developing Strategies
Best practices
Back up critical data regularly
Ensure that System Event Logging is on
Install and utilize intrusion detection systems
Perform periodic security assessment
Test security plans and procedures
Conduct background checks for employees with
access to critical data
Copyright 2009, Paul Kirvan Associates, Inc. 32
Summary – Going Forward
Copyright 2009, Paul Kirvan Associates, Inc. 33
Summary
Infrastructure assessment, gap analysis
Identify risks, single points of failure
Develop disaster recovery policies
Develop plans and implement them
Emphasize network redundancy and resilience
Focus on network security, perimeter protection
Focus on voice, data, IP, wireless and convergence
Document/exercise plans regularly
Keep plans up to date
Copyright 2009, Paul Kirvan Associates, Inc. 34
Thank you
Paul Kirvan Associates
Email pkirvan@msn.com
Cell +1 908-902-1545
Copyright 2009, Paul Kirvan Associates, Inc. 35
