23
Mon, Dec
3 New Articles

Moving from High Availability to Enterprise-wide Operational Resiliency

High Availability / Disaster Recovery
Typography
  • Smaller Small Medium Big Bigger
  • Default Helvetica Segoe Georgia Times
Having the right technologies in place after a disaster can save your data, but is that enough to save your business?

 

If you think that meeting compliance standards has been difficult and that once you get there your chances for protecting your organization's information assets are assured, you may be missing a crucial point.

 

Compliance isn't just about protecting the business itself and ensuring continuity, although there are regulations that address acceptable risk for financial institutions, which, if followed, might certainly help avoid an Enron-style implosion. But compliance is also about protecting the other guy: the client, be it a customer or stockholder. The IT department has to take measures to protect two separate entities: the clients and the organization itself.

 

Adhering to compliance standards today is a good start toward protecting the organization, but it is only that: a start. To have a truly enterprise-wide resiliency plan in place that can effectively deal with a major organizational disruption means going beyond implementing compliance best practices of security standards and high availability; it means putting into place a solid resiliency infrastructure that takes into account both high availability technologies and operational challenges, including communications, that come into play during a major business disruption.

 

I will never forget being shaken out of bed at 4:31 in the morning of January 17, 1994, as what came to be known as the Northridge Quake shook Southern California to its core. Though I was miles away in Long Beach, our condo building was swaying back and forth like a fir tree in the wind, collapsing brick fireplaces in the residences of the 20 families who lived there. The 6.7 quake, one of the country's costliest natural disasters, killed 72 people and injured 12,000. It was enough to cause a friend of mine and his wife to leave the state for their native Washington. I wrote articles at the time about the IBM-supported businesses affected and the heroic efforts their owners made in getting back on their feet and operational after the office walls collapsed and all the monitors landed on the floor. It's about then that you value the expensive business continuity insurance on which you've been paying for the past several years.

 

According to a frequently cited study by KPMG LLP, 40 percent of all companies that experience a disaster go out of business within two years. A 2005 study by AT&T found that, among 1,200 businesses surveyed, 16 percent reported losing more than $100,000 a day during a disaster.

 

Consider the recent 7.9 quake in China's Beichuan County in Sichuan Province last May 12. So far, the estimate is that 50,000 people are dead and five million are homeless. Some 7,000 school classrooms collapsed, and 300 students were killed at one location. The irony is that an article in the journal Tectonics in July 2007 warned of just such a quake along the Sichuan faults when it reported that they "are sufficiently long to sustain a strong ground-shaking earthquake, making them potentially serious sources of regional seismic hazard." A research team of Chinese, European, and U.S. geoscientists studied the area and found pressure had been building up ever since a similar devastating quake hit the region in 1933.

 

Now think about the city of Los Angeles next to the San Andreas Fault, which scientists for years have been predicting will eventually cause "the big one," as it's affectionately known as in California. Companies such as Countrywide Financial, which up until the recent mortgage meltdown was one of the largest mortgage servicing companies in the U.S, have long been aware of the danger. Countrywide replicated its data real-time over a T-1 line to a remote facility in the southwest just in case its Los Angeles-area facility became inoperable.

 

Despite the frequency and likelihood of such disasters as Northridge, Katrina, and 9/11, only 40 percent of the companies in the AT&T survey reported that business continuity was a priority. As BusinessResiliency.com said, "the human tendency to believe that 'it can't happen to me' haunts the traditional business continuity discipline and results in leadership begrudgingly spending just enough to be compliant with laws, regulations, or accepted standards."

 

If a telephone book's worth of compliance regulations don't get business leaders on board to protect more than just their data, then what will it take? The answer is it's going to take a non-traditional business continuity approach where solutions for business resiliency return immediate value-adds to the company's bottom line. It's going to take a resiliency program that lends strategic and operational value throughout the organization so that it not only takes care of the organization during a time of disruption but also provides a number of additional features that immediately generate a return on investment upon implementation.

 

Let's review briefly the traditional technological solutions frequently cited as constituting high availability. Afterward, we can explore several of the value-adds that go into creating a truly enterprise-wide operational resiliency infrastructure.

 

The longstanding approach to preserving the company's information assets is to back up all data onto tape. This practice is still followed today, partly because it's traditional, partly because people like to have something tangible they can hang onto that represents their data--as opposed to a magnetic disk--and partly because tape is still a lot less expensive than disk and doesn't require burning electricity 24x7. The only trouble with tape is that it almost assures that once you go down, you're going to be down for some time until you can restore everything from the tape, and whatever data was input since your last backup is probably going to be lost.

 

At the other end of the spectrum is a clustering solution employing replication and failover among three or more servers that can pretty much assure you of continuous availability. Some businesses need that. Say you're a gambling casino in Las Vegas. Heaven forbid your computers should go down for even a minute.

 

In between these two extremes is a variety of solutions including disk solutions, such as Raid 5, journaling to a second partition, and virtualization. The big differentiator between them is whether you use a single-system or a multi-system solution. Having two systems to work with can not only dramatically increase your data currency but also vastly decrease your downtime. You can employ logical replication, switchable devices (virtual storage with multiple processors), cross-site mirroring, and peer-to-peer remote copying, among others, if you have two systems at your disposal. One system equals one flag; two systems equal six flags.

 

So what happens when you experience a Katrina, or a 9/11, or a San Andreas fault--oops, that one hasn't happened yet--or a Sichuan-style earthquake? Well, who cares if you can recreate your data if you don't have an office building or any employees, right? Wrong. You care because the heart of your business is on your computer (not to mention the fact that the government or a business partner may hold you liable if you can't recreate it). It's all about planning ahead. Gartner reported that after 9/11, the three leading hot-site vendors serving businesses in Manhattan were using only 40 percent of their processing capacity. Why? There weren't enough workstations for the banking and other firms to use to access their data. They had underestimated their operational recovery needs even though they had properly planned for their IT recovery. Events rarely go according to plan after a disaster, and it's just as important to have a flexible and connected workforce that can operate, say, from remote and disparate locations, as it is to have a state-of-the-art high availability solution in place.

 

So where am I headed with this argument? The point is that in order to protect your customers, you have to have a best-practices compliance program in place; to protect your data, you have to have a high-availability solution in place; and to protect your business, you have to have an enterprise-wide business resiliency plan in place that takes a holistic approach to business continuity. And it has to make sense economically so that you are reaping payback benefits from the first day of implementation. All this is contained in your business impact analysis that lays out the objectives, processes, resources, interdependencies, and consequences of actions designed to help you achieve business resiliency.

 

Let's discuss what I mean by a holistic business continuity, or resilience, plan. Today it is actually possible to implement a business resiliency program that has immediate return to the company's bottom line. It can have strategic and operational value, and the organization can leverage its technology infrastructure to support ongoing business requirements. A resilient infrastructure can help the company to adapt more quickly and to tighten its operations so as to offer more competitive pricing, which of course will be an advantage against competitors and will most probably increase market share.

 

The systems that can help keep your people intact as a unit, even if your office building isn't, include such things as a robust remote access solution, the latest in collaboration tools so that people can continue to work together and make fast decisions, and a single point of access to allow users to employ any browser or desktop to get at information and applications, contact people, and control processes.

 

Remote access is a must-have if you are going to have a solid business resiliency program. Employees will need access day or night to the information necessary for them to do their jobs. Core business applications, employee documents, earlier conceived plans on how to deal with emergencies, email, CRM functions, even the sometimes overlooked legacy applications--all should be accessible remotely to be able to weather a major disruption.

 

Using such tools as instant messaging, team workplaces, virtual meetings, and joint contact directories in order to collaborate in decision-making will come in extremely handy during a disaster, but is sure to raise everyone's productivity in the meantime. New tools from Lotus as well as online services from Yahoo!, Google, Microsoft, Zoho, and Citrix make these tasks a breeze today.

 

Having a single point of access can help avoid confusion, frustration, and wasted time during an emergency. It also will improve worker productivity during regular business sessions. A portal that extends a user's work space to any desktop, is scalable, and can be counted on to work as planned during an emergency is an integral part of a sound business resiliency infrastructure. Users need controlled but simple access to the portal, where they can edit documents, spreadsheets, and presentations. Such portals can also help render faster decisions and lower costs during normal times by providing for such things as self-serve human resources functions, more-efficient IT help desk service enhanced by improved communications, wireless and voice-based access to improve productivity, and reduced office costs through expanded telecommuting programs.

 

Apart from the aforementioned benefits such an infrastructure offers, having such a resilient infrastructure can lead to running a tighter ship and maintaining agile players in the competitive world of business. In addition, having such capabilities can be a feather in your cap when talking to customers or investors, who will be looking for a company that is operating on the leading edge of technology.

 

With a sound high-availability solution, a detailed business impact analysis, compliance requirements that are under control, and a resilient enterprise-wide infrastructure, you can taunt the big bad wolf to try to blow down your house, but you'll feel confident it's made not of straw but of brick. What? Brick homes will likely crumble during earthquakes, you say? Don't worry. There isn't ever going to be another earthquake.

BLOG COMMENTS POWERED BY DISQUS

LATEST COMMENTS

Support MC Press Online

$

Book Reviews

Resource Center

  • SB Profound WC 5536 Have you been wondering about Node.js? Our free Node.js Webinar Series takes you from total beginner to creating a fully-functional IBM i Node.js business application. You can find Part 1 here. In Part 2 of our free Node.js Webinar Series, Brian May teaches you the different tooling options available for writing code, debugging, and using Git for version control. Brian will briefly discuss the different tools available, and demonstrate his preferred setup for Node development on IBM i or any platform. Attend this webinar to learn:

  • SB Profound WP 5539More than ever, there is a demand for IT to deliver innovation. Your IBM i has been an essential part of your business operations for years. However, your organization may struggle to maintain the current system and implement new projects. The thousands of customers we've worked with and surveyed state that expectations regarding the digital footprint and vision of the company are not aligned with the current IT environment.

  • SB HelpSystems ROBOT Generic IBM announced the E1080 servers using the latest Power10 processor in September 2021. The most powerful processor from IBM to date, Power10 is designed to handle the demands of doing business in today’s high-tech atmosphere, including running cloud applications, supporting big data, and managing AI workloads. But what does Power10 mean for your data center? In this recorded webinar, IBMers Dan Sundt and Dylan Boday join IBM Power Champion Tom Huntington for a discussion on why Power10 technology is the right strategic investment if you run IBM i, AIX, or Linux. In this action-packed hour, Tom will share trends from the IBM i and AIX user communities while Dan and Dylan dive into the tech specs for key hardware, including:

  • Magic MarkTRY the one package that solves all your document design and printing challenges on all your platforms. Produce bar code labels, electronic forms, ad hoc reports, and RFID tags – without programming! MarkMagic is the only document design and print solution that combines report writing, WYSIWYG label and forms design, and conditional printing in one integrated product. Make sure your data survives when catastrophe hits. Request your trial now!  Request Now.

  • SB HelpSystems ROBOT GenericForms of ransomware has been around for over 30 years, and with more and more organizations suffering attacks each year, it continues to endure. What has made ransomware such a durable threat and what is the best way to combat it? In order to prevent ransomware, organizations must first understand how it works.

  • SB HelpSystems ROBOT GenericIT security is a top priority for businesses around the world, but most IBM i pros don’t know where to begin—and most cybersecurity experts don’t know IBM i. In this session, Robin Tatam explores the business impact of lax IBM i security, the top vulnerabilities putting IBM i at risk, and the steps you can take to protect your organization. If you’re looking to avoid unexpected downtime or corrupted data, you don’t want to miss this session.

  • SB HelpSystems ROBOT GenericCan you trust all of your users all of the time? A typical end user receives 16 malicious emails each month, but only 17 percent of these phishing campaigns are reported to IT. Once an attack is underway, most organizations won’t discover the breach until six months later. A staggering amount of damage can occur in that time. Despite these risks, 93 percent of organizations are leaving their IBM i systems vulnerable to cybercrime. In this on-demand webinar, IBM i security experts Robin Tatam and Sandi Moore will reveal:

  • FORTRA Disaster protection is vital to every business. Yet, it often consists of patched together procedures that are prone to error. From automatic backups to data encryption to media management, Robot automates the routine (yet often complex) tasks of iSeries backup and recovery, saving you time and money and making the process safer and more reliable. Automate your backups with the Robot Backup and Recovery Solution. Key features include:

  • FORTRAManaging messages on your IBM i can be more than a full-time job if you have to do it manually. Messages need a response and resources must be monitored—often over multiple systems and across platforms. How can you be sure you won’t miss important system events? Automate your message center with the Robot Message Management Solution. Key features include:

  • FORTRAThe thought of printing, distributing, and storing iSeries reports manually may reduce you to tears. Paper and labor costs associated with report generation can spiral out of control. Mountains of paper threaten to swamp your files. Robot automates report bursting, distribution, bundling, and archiving, and offers secure, selective online report viewing. Manage your reports with the Robot Report Management Solution. Key features include:

  • FORTRAFor over 30 years, Robot has been a leader in systems management for IBM i. With batch job creation and scheduling at its core, the Robot Job Scheduling Solution reduces the opportunity for human error and helps you maintain service levels, automating even the biggest, most complex runbooks. Manage your job schedule with the Robot Job Scheduling Solution. Key features include:

  • LANSA Business users want new applications now. Market and regulatory pressures require faster application updates and delivery into production. Your IBM i developers may be approaching retirement, and you see no sure way to fill their positions with experienced developers. In addition, you may be caught between maintaining your existing applications and the uncertainty of moving to something new.

  • LANSAWhen it comes to creating your business applications, there are hundreds of coding platforms and programming languages to choose from. These options range from very complex traditional programming languages to Low-Code platforms where sometimes no traditional coding experience is needed. Download our whitepaper, The Power of Writing Code in a Low-Code Solution, and:

  • LANSASupply Chain is becoming increasingly complex and unpredictable. From raw materials for manufacturing to food supply chains, the journey from source to production to delivery to consumers is marred with inefficiencies, manual processes, shortages, recalls, counterfeits, and scandals. In this webinar, we discuss how:

  • The MC Resource Centers bring you the widest selection of white papers, trial software, and on-demand webcasts for you to choose from. >> Review the list of White Papers, Trial Software or On-Demand Webcast at the MC Press Resource Center. >> Add the items to yru Cart and complet he checkout process and submit

  • Profound Logic Have you been wondering about Node.js? Our free Node.js Webinar Series takes you from total beginner to creating a fully-functional IBM i Node.js business application.

  • SB Profound WC 5536Join us for this hour-long webcast that will explore:

  • Fortra IT managers hoping to find new IBM i talent are discovering that the pool of experienced RPG programmers and operators or administrators with intimate knowledge of the operating system and the applications that run on it is small. This begs the question: How will you manage the platform that supports such a big part of your business? This guide offers strategies and software suggestions to help you plan IT staffing and resources and smooth the transition after your AS/400 talent retires. Read on to learn: