All staff are required to undertake annual online training modules including UCCC, Privacy Act and Anti-Money Laundering/Counter Terrorism Funding Act. Management are kept up to date with changing procedures and legislation via monthly reports that are also presented to the board.
The system is client centric and task based. The interface is intuitive for both users and developers and workflow steps are highly customisable, allowing us to develop bespoke functionality to continually improve on system performance.
All infrastructure is centrally located in Sydney and we have provision for ample ‘warm’ seats at an alternate site with workstations and telephones plus dedicated servers ready to recover other systems as required.
Head office has two separate power circuits to the base building and a dedicated UPS for every device in the server room. Servers and critical devices are connected to both circuits to remove any single points of failure.
Three levels of backups are performed using a combination of on-site replication, intra day NAS based snapshots and traditional overnight backups to tape. Snapshot technology enables critical systems such as ARM.net to be backed up fully every hour with the transaction logs databases being backed up every five minutes. These snapshots can be mounted into other environments to facilitate restores and development testing.
Recovery of the core system at DR is possible in around 15 mins with a loss of data of less than 1 hour. Replicated copies of SQL databases, e-mail environments and File Server data are kept at DR in read only mode.
Full scale DR tests are completed at least annually, based upon a full disaster where head office was completely unavailable. Recovery of core systems is performed on the dedicated servers first and then by restoring the other servers and systems from tape backup. Core systems are recovered well within the allowed time frames.