Business continuity (BC) and disaster recovery (DR) plans must be prepared for any contingencies we may face in cyberspace. BC/DR plans are two disparate operations; where in BC we plan to operate the organization’s infrastructure as best we could to support the organization’s business mission. And in DR, we recover the assets to fully operate as quickly as possible. To achieve these two mission objectives, we must design the infrastructure that can sustain any disruptive disasters. Servers, network devices, and applications must be fault-tolerant. The assets must be able to fail over to an alternate network to continue the operations without any interruptions. The disaster recovery plan (DRP) addresses security activities that are critical to the successful recovery of operations following disaster. Thoroughly assessing each of these security activities ensures that the organization is well prepared to deal with disaster conditions. Some of the DRP activities include technical description of systems covered by the DR plan; organizational roles and responsibilities; recovery teams and their activities; notification and activation procedures; standard operating procedures and restoration priorities; testing, training, and exercises, post-disaster reconstruction; and other supporting resource information.