Creating a Disaster Recovery Plan can be a very complicated process. I would first recommend performing a risk assessment to understand what applications and systems you have running, how critical they are to the company and who owns them. Once you have all this information in one place, you can start building an effective recovery plan. Disaster Recovery World provides some helpful information and tools to ease this process. SANS also has some information in their Disaster Recovery reading room.
For more information on this topic, visit these other SearchSecurity resources:
Best Web Links: Incident Response
Best Web Links: Risk Analysis
The Information Architect: Disaster recovery -- Know what you really need
Ask the Expert: Creating a Disaster Recovery Plan
This was first published in June 2002