Auditing Disaster Recovery

All data centers are susceptible to natural and man-made disasters. The preceding section focused on auditing controls that prevent disasters and system outages. This section will focus on auditing disaster recovery and will address the following:

  • System resiliency

  • Data backup and restore

  • Disaster recovery planning

From time to time, auditors are called on to review disaster recovery plan tests. As a result, we will address disaster-recovery plan testing at a high level as well.


Disaster recovery is a very deep discipline; it is important to note that the scope of this book is to touch on best practices and provide high-level audit procedures. There are several resources that can be used by auditors for additional information, including the following:

IT Auditing. Using Controls to Protect Information Assets
It Auditing: Using Controls to Protect Information Assets [IT AUDITING -OS N/D]
Year: 2004
Pages: 159 © 2008-2017.
If you may any questions please contact us: