A new set of Cloud Outage Incident Response (COIR) Guidelines to assist in Business Continuity Management (BCM) and Disaster Recovery (DR) plans has been launched by Infocomm Development Authority of Singapore (IDA)'s Assistant Chief Executive Khoong Hock Yun at the Singapore Computer Society's BCM Conference on February 26, 2016.
According to a media statement, the creation of these guidelines addresses the need of preparing for and mitigating the threat of cloud outages - whether for business-critical uptime or data sensitivity - in the face of rapidly emerging new technologies.
It also gives clarity to enterprises and cloud service providers (CSPs) on what measures and processes should be put in place to prepare for and respond should cloud outages occur.
Developed since September 2013, the COIR Guidelines draw on the combined work and feedback of enterprises and public agencies to form a cohesive blueprint to enhance CSP resilience capabilities. There are four tiers of responses CSPs can prepare for based on projected impact of outages, ranging from most to least severe:
- Tier A - Systemic/Life-Threatening Impact (E.g. Airplane traffic controls industry)
- Tier B - Business Critical Impact (E.g. Payment gateways)
- Tier C - Operational Impact (E.g. Corporate emails)
- Tier D - Minimal Impact (E.g. General information websites)
With these guidelines, CSPs can clearly outline the scope and scale of resilience measures they offer as part of their cloud services. Such measures can include clarity on mobilisation of emergency resources, prioritisation levels for recovery and restoration of affected cloud services.
"One important foundation for a vibrant digital economy is a flexible, cohesive, and integrated cloud ecosystem that meets our business enterprises' needs. In our journey towards being a Smart Nation, this Cloud Outage Incident Response Guidelines complement our efforts to drive ICT standards, strengthen resiliency and encourage clarity for businesses as cloud users," said Khoong.
"The Cloud Outage Incident Response Guidelines are a welcome addition to the business continuity and disaster recovery body of knowledge for our industry. It brings clarity and assurance to enterprises and strengthens Singapore's resilience as part of a Smart Nation," added Paul Lee, President of Singapore Computer Society Business Continuity Group.
COIR Guidelines also complement IDA's multi-prong approach towards a cohesive and integrated cloud ecosystem. Together with the Multi-Tier Cloud Security Singapore Standard, the Guidelines will help improve transparency and build greater trust of cloud services.
Sign up for CIO Asia eNewsletters.