Design of Disaster Recovery Plan: State University in Indonesia

University X is a state university in Indonesia that can independently manage its assets. In carrying out its business processes, University X uses many information systems managed by the Directorate of Information Systems and Technology (DIST). The management of IS/IT at the State University has not yet reached risk management implementation under IT governance. This research criticized the absence of an IS/IT recovery plan as the root cause. In this regard, University X must have a Disaster Recovery Plan (DRP) to guide risk management implementation. This research used qualitative methods, a combination of case study methods, and action research. Data collection was carried out by interviews with the university's management, literature study, documentation, and observation of business processes of IS/IT assets and data center. The DRP document was designed based on NIST SP 800-34 Rev.1. The stages of this research consisted of the analysis of business processes, identification of IS/IT assets, policymaking of an IS/IT disaster recovery plan, business impact analysis, prevention control analysis on data center based on ANSI / TIA 942-A, and designing DRP documents. The validation process of the DRP document involved the management of DIST. This research delivered a DRP document draft that suits University X's needs as a state university in Indonesia.