Backup and Disaster Recovery

The purpose of this policy is to ensure that the data and information is backed up and can be recovered by the University in a planned, rapid, and effective manner, based on business requirements

This policy applies to all members of UTAS-Sur, whether on a temporary or permanent basis as well as any third parties working with or contracted by the university, it covers all environments where the university’s information systems are operated.  

Information Systems and Educational Technologies Center.

‏Assistant Vice Chancellor for UTAS – Sur. 

Any violation of this policy by all members or third parties (suppliers, contractors, business partners, etc.) will be subject to disciplinary and legal actions in accordance with the laws of the Sultanate of Oman, including regulations related to cybersecurity, university’s policies, labor laws, and electronic transactions.

Backup Requirements: 

• Data backup must be taken based on business needs with procedures for developing a backup plan.  

• Backups should be stored in different locations with different access copies. 

 

 Backup Media: 

• Appropriate media must be used for storing backups, ensuring that they are error-free and valid for use.   

• Backup storage media must be replaced immediately after encountering any errors or at predetermined intervals, whichever comes first.   

• Appropriate labels must be placed on backup storage media, and they should be numbered automatically by the backup system or manually by the backup manager.  

• The labels on backup media must include, at a minimum, the following information:   

– System name.   

– Date of backup creation.   

– Sensitivity classification.   

– Contact information with the University.   

• The backup manager must monitor the backup media, ensuring that they are replaced after use according to the specified number of repetitions.   

 

Data Retention:   

The backup manager must ensure that backups of data for all information systems are retained for the period required by the University, regulatory requirements, or system requirements.   

 

Backup Recovery:   

• Backups must be recovered based on need and with appropriate authorization from the Information Systems and Educational Technologies Center.   

• Backups must be recovered in accordance with the backup recovery procedures.   

 

Backup Recovery Testing:  

The backup manager must periodically test the recovery of backups using a sample of data stored in the backups to ensure their recoverability, in coordination with the system managers.   

 

This policy shall take effect from the approval date.