UCI   Office of Information Technology

UCI OIT Resilience & Recovery
  1. Home
    2.  » Policy and Standards

Policy and Standards

The University of California – Information Security Policy 12 (IS-12), an IT Recovery policy, is designed to ensure the resilience and continuity of the University of California’s information technology systems. This policy outlines the procedures and responsibilities for recovering IT services and data during a disruption, ensuring critical operations can be restored promptly and effectively.

Scope

At UCI, our IS-12 Program covers IT resources that need to be recovered within 24 hours or less (Recovery Levels 3, 4, and 5) and support essential functions as defined in the UCI Business Continuity plan. The policy is relevant to both on-premises and cloud-based IT resources. The program is designed to help the units improve their IT recovery capability over time.

Objectives

The primary objectives of the UC IS-12 IT Recovery Policy are to:

  1. Minimize Downtime: Ensure essential IT services are restored quickly following a disruption.
  2. Protect Data Integrity: Safeguard the integrity and availability of critical data during and after a recovery process.
  3. Define Roles and Responsibilities: Clearly outline the roles and responsibilities of all stakeholders involved in IT recovery efforts.
  4. Establish Recovery Procedures: Provide a detailed framework for developing, testing, and maintaining IT recovery plans.
  5. Enhance Preparedness: Promote a culture of preparedness and resilience across the University of California’s IT landscape.

Key Components

The UC IS-12 IT Recovery Policy includes the following key components:

  • Risk Assessment: Identifying potential risks and vulnerabilities that could impact IT systems.
  • Recovery Planning: Developing comprehensive recovery plans tailored to specific IT services and systems.
  • Testing and Validation: Regularly testing recovery plans to ensure their effectiveness and making necessary adjustments.
  • Communication: Establishing clear communication channels for coordinating recovery efforts and keeping stakeholders informed.
  • Continuous Improvement: Continuously reviewing and improving recovery strategies based on lessons learned and evolving best practices.

 

University of California Resources

print