Despite multiple warnings about the consequences of failing to have a robust disaster recovery plan in place, the new study found that only 38 percent of respondents said that their enterprise tested its disaster recovery plan on a regular basis. Only nine per cent of companies test their plan every one to five months and another 29 per cent every six to 12 months.
The findings follow a report by IDC earlier in 2015, which found that a typical Fortune 1000 company experiences an average loss of $100,000 per hour when struck by infrastructure failure and additional costs of between $500,000 and $1 million when faced with a critical application failure. While half the companies surveyed by Kroll Ontrack had not experienced an IT disaster in the previous three years, more than a third had to invoke their disaster recovery plan. While the majority of these companies had to invoke their plan between one and five times, a small minority were forced to undertake disaster recovery measures more than 10 times in the last three years.
Another concern raised by Kroll Ontrack’s new study is that even though employees’ mobile devices are now an important element of corporate IT infrastructure, this hasn’t been accounted for by most companies’ disaster recovery plans. Almost half (48 per cent) of respondents said that their plans do not cover mobile devices used by employees to access corporate systems.
Paul Le Messurier, Programme and Operations Manager at Kroll Ontrack said: “These findings are a clear indication that many companies still face significant risks in terms of data security, data loss and data recovery. They also lack a thought-out disaster recovery plan that is tested regularly and is bullet-proof when a real disaster strikes the company and it is faced with system failure and data loss. Without an effective plan in place, companies face the prospect of a loss of business continuity plus reputational and financial damage. It’s important that disaster recovery plans are in place, but it’s just as important to ensure that they are tested regularly and updated accordingly.
“Even though the cost of downtime for a small to medium sized company may not be as high as for a Fortune 1000 one, it can still have an impact that threatens the existence of the company. It pays to have a disaster plan in place that is tested regularly and that can be invoked quickly and efficiently.”
In a separate poll undertaken in the UK, almost half of respondents (46%) said that they didn’t have a disaster recovery plan in place at all, while a quarter (24%) said that they didn’t know whether they had a plan or not.
