Business Continuity and Disaster Recovery Planning Flashcards

Question 1

Q

What does the acronym BCP stand for?

Answer

A

BCP (Business Continuity Planning)

Question 2

Q

What does the acronym DRP stand for?

Answer

A

DCP (Disaster Recovery Planning)

Question 3

Q

In terms of Business Continuity and Disaster Recovery Planning, what is the the last line of defense when all other controls have failed?

Answer

A

BCP/DRP is the last line of defense when all other controls have failed; the final control that may prevent drastic events like injury or loss of life or failure of an organizations.

Question 4

Q

In terms of Business Continuity and Disaster Recovery Planning,

characterize the difference between BCP and DRP.

Answer

A

BCP is an umbrella plan which includes multiple specific plans; most importantly the Disaster recovery Plan (DRP)

DRP is IT centric.

Question 5

Q

In terms of Business Continuity and Disaster Recovery Planning,

What is the definition of BCP?

Answer

A

BCP: Business Continuity Planning: ensuring the business will continue to operate before, throughout and after a disaster; a long term strategic business oriented plan; long term plan to ensure the continuity of the business.

Question 6

Q

In terms of Business Continuity and Disaster Recovery Planning,

What is the definition of DRP?

Answer

A

Disaster Recovery Plan (DRP): A short term plan to recover from a disruptive event.

Question 7

Q

In terms of Business Continuity and Disaster Recovery Planning,

What is the definition of COOP?

Answer

A

Continuity of Operations Plan (COOP): A plan to maintain operations during a disaster.

Question 8

Q

In terms of Business Continuity and Disaster Recovery Planning,

What is the definition of Disaster?

Answer

A

Disaster: Any disruptive event that interrupts normal systems operations.

Question 9

Q

In terms of Business Continuity and Disaster Recovery Planning,

What is the definition of the Mean Time Between Failures?

Answer

A

Mean Time Between Failures (MTBF): Quantifies how long a new or repaired system will run on average before failing

Question 10

Q

In terms of Business Continuity and Disaster Recovery Planning,

What dos the acronym MTBF stand for?

Answer

A

Mean Time Between Failures (MTBF): Quantifies how long a new or repaired system will run on average before failing

Question 11

Q

In terms of Business Continuity and Disaster Recovery Planning,

What dos the acronym MTTR stand for?

Answer

A

Mean Time To Repair (MTTR): Describes how long it will take to recover a failed system.

Question 12

Q

In terms of Business Continuity and Disaster Recovery Planning,

What is the definition of Mean Time To Repair?

Answer

A

Mean Time To Repair (MTTR): Describes how long it will take to recover a failed system.

Question 13

Q

In terms of Disaster Types

What is the likelihood of a Natural Diasaster?

Answer

A

Low likelihood but depends on where you are.

Question 14

Q

In terms of Disaster Types

Technical disastgers (Cyber warfare, espionage, crime, hactivism) are a subset of whct kind of Disaster?

Answer

A

Human Disaster

Question 15

Q

In terms of Disaster Types

What is the most common kind of Disaster?

Answer

A

Human Unintentional is the most common disaster.

Question 16

Q

In terms of Disaster Types

What is the most easily avoided kind of Disaster?

Answer

A

Human Unintentional is the most common disaster.

Question 17

Q

In terms of Disaster Types

What type of disaster are Personnel Shortages?

Answer

A

Human Disaster.

Question 18

Q

In terms of Disaster Types

What are the trhee kinds of Personnel Shortages?

Answer

A

1: Pandemic & Disease
2: Strikes
3: Availability

Question 19

Q

In terms of Disaster Types

Is weather a natural disaster or an environmental disaster?

Answer

A

natural disaster

Question 20

Q

In terms of Disaster Types

What is an environmental disaster?

Answer

A

Environmental pertains to information systems: Power outages or hardware and/or software failures.

Question 21

Q

In terms of Disaster Types

What is the most common disaster in a datacenter?

Answer

A

Power is the most common that will affect a datacenter.

Question 22

Q

In terms of the Disaster Recovery Process

What is the most most important issue?

Answer

A

Personnel safety is the most important issue

Question 23

Q

What is are the five steps to the Disaster Recovery Process

Answer

A

1: Response
2: Recovery Team Activation
3: Tactical Communication
4: Damage Assessment
5: Critical Asset recovery (Reconstitution)

Question 24

Q

In terms of the Disaster Recovery Process

What is is th epurpose of the Response Phase?

Answer

A

Initial Damage Assessment; Speed is key

Are people safe?

Is it a disaster?

Do we need to engage the alternate processing center?

Question 25

Q

In terms of the Disaster Recovery Process

What are three considerations to Tactical Communication?

Answer

A

1: Quick and frequent updates about the situation
2: May have to be done out of band
3: May have to communicate to the public

Question 26

Q

What are the six steps when Developing the BCP/ DRP

Answer

A

1: Project Initiation
2: Project Scope
3: Business Impact Analysis
4: Preventive Controls Identification
5: Recovery Strategy
6: Plan Design and Development

Question 27

Q

In terms of Developing the BCP/ DRP

What are the seven steps to Project Initiation?

Answer

A

1: Develop the contingency planning policy statement: provides authority to develop plan
2: Conduct Business Impact Analysis (BIA): ID critical IT systems
3: ID Preventative controls:
4: Develop recovery strategies
5: Develop IT Contingency plan
6: Plan testing, exercises and training
7: Plan maintenance

Question 28

Q

In terms of Developing the BCP/ DRP

What are the five steps to Project Scope?

Answer

A

1: Define exactly which assets to protect
2: Define which emergency events the plan will address
3: Get C-Level approval
4: Determine objectives and deliverables in if-then format (If hurricane – enact Plan H)
5: Assess Critical State by creating a Critical State IT Asset list

Question 29

Q

In terms of Developing the BCP/ DRP

During Project Scope, What are three considerations when getting C-Level approval?

Answer

A

1: Support for initiating the plan
2: Final Approval
3: Demonstrate due care and due diligence or be held liable under law

Question 30

Q

In terms of Developing the BCP/ DRP

During Project Scope, when assessing the Critical State, does the PM us a qualitative approach or a a quantitative approach ?

Answer

A

The PM uses a qualitative approach when documenting assets; during the BIA later, he will use a the quantitative method.

Question 31

Q

In terms of Developing the BCP/ DRP

What is a Business Impact Analysis?

Answer

A

A formal method for determining how a disruption to the IT systems will impact the organization with respect to the mission.

It is an analysis to identify and prioritize critical IT systems and components.

It aims to quantify the consequence of a disruption

Question 32

Q

In terms of Developing the BCP/ DRP

What is the primary goal of a Business Impact Analysis?

Answer

A

Determine the Maximum Tolerable Downtime (MTD) for a specific asset

Question 33

Q

In terms of Developing the BCP/ DRP

What does the Maximum Tolerable Downtime (MTD) mean

Answer

A

MTD is the total time a system can be inoperable before an organization is severely impacted.

It is the max time it takes the reconstitution phase.

Question 34

Q

In terms of Developing the BCP/ DRP

What does the acronym (MTD) stand for

Answer

A

Maximum Tolerable Downtime (MTD)

Question 35

Q

In terms of Developing the BCP/ DRP

What are the two metrics that comprise the Maximum Tolerable Downtime (MTD) ?

Answer

A

1: Recovery Time Objective (RTO)
2: Work recovery Time (WRT)

Question 36

Q

In terms of Developing the BCP/ DRP

What are the three alternative names to Maximum Tolerable Downtime (MTD) ?

Answer

A

1: Maximum Allowable Downtime (MAD)
2: Maximum Tolerable Outage (MTO)
3: Maximum Acceptable Outage (MAO)

Question 37

Q

In terms of Developing the BCP/ DRP and determining the Maximum Tolerable Downtime (MTD)

What does the Recovery Time Objective (RTO) mean?

Answer

A

Recovery Time objective (RTO) is the maximum desired length of time allowed between a disaster and the resumption of normal operations.

The RTO defines the point in time after a disaster at which the consequences of the interruption become unacceptable.

MTD = RTO + WRT

Question 38

Q

In terms of Developing the BCP/ DRP and determining the Maximum Tolerable Downtime (MTD)

What does the acronym (RTO) stand for?

Answer

A

Recovery Time objective (RTO)

Question 39

Q

In terms of Developing the BCP/ DRP and determining the Maximum Tolerable Downtime (MTD)

What does the acronym (WRT) stand for?

Answer

A

Work Recovery Time (WRT)

Question 40

Q

In terms of Developing the BCP/ DRP and determining the Maximum Tolerable Downtime (MTD)

What does Work Recovery Time (WRT) mean?

Answer

A

The time it takes to get business processes up and running after the systems have been restored.

MTD = RTO + WRT

Question 41

Q

In terms of Developing the BCP/ DRP and determining the Maximum Tolerable Downtime (MTD)

What is the general rule MTD time and revoery cost?

Answer

A

As a general rule, the shorter the MTD, the more expensive the recovery solution.

Question 42

Q

In terms of conducting the Business Impact Analysis

What is the Reconstitution Phase?

Answer

A

Reconstitution Phase is the process of moving an organization from disaster recovery to business operations.

Question 43

Q

In terms of conducting the Business Impact Analysis

What is a significant side benefit?

Answer

A

Side benefit: If there are inefficiencies in the business process, the BIA will identify them.

Question 44

Q

In terms of Developing the BCP/ DRP

What does the acronym BIA stand for?

Answer

A

Business Impact Analysis

Question 45

Q

In terms of Business Impact Analysis

What are the six common metrics used

Answer

A

1: Recovery Point Objective (RPO)
2: Recovery Time Objective (RTO):
3: Work Recovery Time (WRT):
4: Mean Time Between Failures (MTBF)
5: Mean Time To Repair (MTTR):
6: Minimum Operating requirements (MOR):

Question 46

Q

In terms of Business Impact Analysis

What is the Recovery Point Objective (RPO)?

Answer

A

The amount of data loss or system inaccessibility (measured in time) that an organization can withstand.

Defined by specific actions like the point in time when users are allowed to deliver payroll checks again.

Question 47

Q

In terms of Business Impact Analysis

What does the acronym (RPO) stand for?

Answer

A

Recovery Point Objective

Question 48

Q

In terms of Business Impact Analysis

What is the Mean Time Between Failures (MTBF)?

Answer

A

Mean Time Between Failures (MTBF): Quantifies how long a new or repaired system will run before failing.

Question 49

Q

In terms of Business Impact Analysis

What is Mean Time To Repair (MTTR)?

Answer

A

Mean Time To Repair (MTTR): Quantifies how long it will take to recover a failed system. It is a best estimate.

Question 50

Q

In terms of Business Impact Analysis

What are the Minimum Operating Requirements (MOR)?

Answer

A

Minimum Operating requirements (MOR): Describes the minimum environmental and connectivity requirements in order to operate computer equipment.

Question 51

Q

In terms of Business Impact Analysis

What does the acronym (MOR) stand for?

Answer

A

Minimum Operating requirements (MOR): Describes the minimum environmental and connectivity requirements in order to operate computer equipment.

Question 52

Q

In terms of Business Impact Analysis

Name the two processes that make up the BIA?

Answer

A

The BIA is comprised of two processes:

1: Identify Critical assets
2: Conduct a comprehensive risk assessment.

Question 53

Q

In terms of Business Impact Analysis during the Recovery Strategy

Name the five kinds of alternate sites listed in order for cost to implement and degree of availability

Answer

A

1: No Plan
2: Cold Site: A datacenter with raised floor, and utilities. No equipment or data.
3: Warm Site: A datacenter with raised floor, utilities, fully configured computers but no data.
4: Hot Site: A datacenter with raised floor, utilities, fully configured computers and data. The idea is to switch over in a small amount of time.
5: Redundant Site: An exact production duplicate.

Question 54

Q

In terms of Business Impact Analysis during the Recovery Strategy

Are you restricted to use any specific kind of control?

Answer

A

No - Always use the three kinds of controls: technical, physical and administrative. Just because you are in t a tent after a hurricane does not obviate the need for physical security.

Question 55

Q

In terms of Business Impact Analysis during the Recovery Strategy

What is Supply Chain Management?

Answer

A

Supply Chain Management: Manage supplies by considering local disasters that only affect your organization or regional disasters that affect all businesses in the area that will compete for resources.

Question 56

Q

In terms of Business Impact Analysis during the Recovery Strategy

What is Telecommunication Management?

Answer

A

Telecommunication Management: Ensures the availability of electronics communications during a disaster.

Question 57

Q

In terms of Business Impact Analysis during the Recovery Strategy

What is Utility Management?

Answer

A

Utility Management: addresses the availability of power, water, gas, erc during the disaster.

Question 58

Q

In terms of Business Impact Analysis during the Recovery Strategy

What is a Reciprocal Agreement or Mutual Aid Agreement?

Answer

A

Reciprocal Agreement (Also called Mutual Aid Agreements): a bi-directional agreement between two organizations that agree to allow the other to move into their spaces during a disaster.

Question 59

Q

In terms of Business Impact Analysis during the Recovery Strategy

What is a Mobile Site?

Answer

A

Mobile Site: Datacenters on wheels.

Question 60

Q

In terms of Business Impact Analysis during the Recovery Strategy

What are Subscription Services?

Answer

A

Subscription Services: Outsource your BCP/ DRP to another company.

Question 61

Q

In terms of Business Impact Analysis during the Plan Design and Development Phase

What are the 7 Related Plans?

Answer

A

1: Continuity of Operations Plan (COOP):
2: Business Recovery Plan (BRP): .
3: Continuity of Support Plan
4: Cyber Incident Response Plan:
5: Occupant Emergency Plan (OEP):
6: Crisis Management Plan (CMP):
7: Crisis Communications Plan:

Question 62

Q

In terms of Business Impact Analysis during the Plan Design and Development Phase

What is Continuity of Operations Plan (COOP)?

Answer

A

Continuity of Operations Plan (COOP): Describes procedures required to maintain operations during a disaster to include transfer of personnel to alternate site and the operation of that site.

Question 63

Q

In terms of Business Impact Analysis during the Plan Design and Development Phase

What is the Business Recovery Plan (BRP):?

Answer

A

Business Recovery Plan (BRP): Also known as the Business Resumption Plan details the steps required to restore the business operation after the disaster. Picks up when the COOP is complete.

Question 64

Q

In terms of Business Impact Analysis during the Plan Design and Development Phase

What is the Continuity of Support Plan?

Answer

A

Continuity of Support Plan focuses narrowly on specific IT systems. Also called the IT Contingency Plan.

Answer 65

A

Cyber Incident Response Plan: Designed to respond to disruptive cyber events including network attacks, worms, viruses, etc.

Answer 66

A

Occupant Emergency Plan (OEP): response procedures for facility occupants in the even to f a situation posing a potential threat to health and safety of personnel. It is facilities focused and not business focused. Should include safety drills.

Answer 67

A

Crisis Management Plan (CMP): provide effective coordination between managers in the event of an emergency.

Answer 68

A

Continuity of Operations Plan (COOP): Describes procedures required to maintain operations during a disaster to include transfer of personnel to alternate site and the operation of that site.

Answer 69

A

Business Recovery Plan (BRP): Also known as the Business Resumption Plan details the steps required to restore the business operation after the disaster. Picks up when the COOP is complete.

Answer 70

A

Occupant Emergency Plan (OEP): response procedures for facility occupants in the even to f a situation posing a potential threat to health and safety of personnel. It is facilities focused and not business focused. Should include safety drills.

Answer 71

A

Crisis Management Plan (CMP): provide effective coordination between managers in the event of an emergency.

Answer 72

A

Crisis Communications Plan: The plan to communicate to the staff and public during a disaster.

Answer 73

A

Call Trees: used to quickly communicate news throughout an organization.

Answer 74

A

1: Most effective when there is two-way reporting (message down and verification up that all has received the info.
2: Must be drilled.

Answer 75

A

Call Trees Hosted by offsite third parties.

Answer 76

A

Emergency Operations Center (EOC): The command post

Answer 77

A

Emergency Operations Center (EOC): The command post

Answer 78

A

Vital records: Should be stored offsite.

Best practice is to have hard copies and electronic copies.

Answer 79

A

Vital records: Should be stored offsite.

Best practice is to have hard copies and electronic copies.

Answer 80

A

Executive Succession Planning: Ensure that there is always an executive available to make a decision.

Answer 81

A

A common mistake is to have the entire executive team travel together.

Answer 82

A

1: Sign checks
2: Procure money.

Answer 83

A

Critical backup media must be stored offsite.

Answer 84

A

Situate the backup location so that an organization can efficiently access the media with the purpose of taking it to the primary or secondary recovery operation.

Answer 85

A

Be sure to address software licensing issues

Answer 86

A

Hardcopy data: Consider operating only on hard copies

Answer 87

A

1: Full: Every piece of data is copied.
2: Incremental: Only changes since the last full or incremental backup.
3: Differential: Only changes since the last full;

Answer 88

A

Electronic vaulting: Electronically transmitting data to a location for backup.

Answer 89

A

A log of all database transactions to backup and restore a database.

Takes a snapshot of the data (checkpoint) at regular intervals.

Recover data to a checkpoint and then use the journal to restore the rest.

Saves the database checkpoints and journaling to an offsite location.

Answer 90

A

Uses two or more databases that are update simultaneously. The shadow can exist locally but it is best practice to host one shadow offsite.

Allows faster recover time compared to remote journaling.

Answer 91

A

Requirements of zero downtime and MTD (Max Tolerable Downtime) of zero.

Answer 92

A

Active – Active Cluster:

1: Multiple Systems all of which are online and actively processing traffic or data.
2: Commonly referred to as Load Balancing
3: Especially common with public facing systems like web front ends.

Active – Passive Cluster:

1: Devices that are already in place, configured, powered-on and ready to start processing if a failure occurs.
2: Any configuration change on the active system is automatically done on the passive system

Also referred to as a hot spare, standby, and failover cluster configuration.

Answer 93

A

Load Balancing

Answer 94

A

Software Escrow: Neutral third party holds the source code in case the development company goes out of business.

Answer 95

A

1: Checklist (Consistency) Testing:
2: Structured Walk-thru Tabletop:
3: Simulation Test / Walkthrough Drill (Not to be confused with walkthrough tabletop) :
4: Parallel Processing:
5: Partial and Complete Business Interruption:

Answer 96

A

Lists all necessary components for a successful recovery.

Often performed concurrently with a structured walkthrough or tabletop exercise.

Focused on ensuring that the organization has, or can acquire in a timely fashion, sufficient resources to recover.

Answer 97

A

Allow all personnel knowledgeable about the systems to thoroughly review the approach.

Answer 98

A

Goes beyond just talking and has teams execute recovery processes by responding to a simulated disaster.

Tactical goal: determine if the team can recover the systems impacted by the simulated disaster.

Strategic goal: Prepare the team to recover from any disaster.

Answer 99

A

Structured Walk-thru Tabletop: Allow all personnel knowledgeable about the systems to thoroughly review the approach.

Simulation Test / Walkthrough Drill: Goes beyond just talking and has teams execute recovery processes by responding to a simulated disaster.

Answer 100

A

Recover critical assets at a alternate site.

Organizations that are highly dependent on mainframes and midrange systems will employ these tests.

Answer 101

A

Partial and Complete Business Interruption

Answer 102

A

1: There is an element of training when conducting tests
2: First Aid / CPR
3: Starting Emergency Power:
4: Calling Tree Test
5: Awareness
6: Must address events that pose a threat to human safety.

Answer 103

A

Process designed to ensure that security is not affected as systems are introduced, changed, and updated.

Includes tracking and documenting all planned changes.

Answer 104

A

All changes must be auditable.

Answer 105

A

The Change Control Board Manages this process. The BCP Team should be a member of the Board.

Answer 106

A

1: C-Level Managers Develop the Policy Statement

Answer 107

A

BCP/DRP Stakeholders and Project PM Conduct the BIA

Answer 108

A

Stakeholders and PM identify the preventative controls

Answer 109

A

C-Level managers develop recovery strategies.

Answer 110

A

1: lack of Management Support
2: Lack of BU involvement
3: Lack of prioritization of critical staff
4: Improper (often too narrow) scope.
5: Inadequate telecommunications management
6: Inadequate supply chain mgt
7: Inadequate crisis management plan
8: Lack of Testing
9: Lack of training and awareness
10: Failure to maintain

Answer 111

A

1: NIST SP 800-34
2: ISO/IEC-27031
3: BS-2599
4: BCI (Business Continuity Institute) six steps for Business Continuity Management

Answer 112

A

1: High Quality
2: In the public domain.

Answer 113

A

ICT: Information and Communication Technology

Answer 114

A

ISMS: Information Security Management Systems

Answer 115

A

British Standards Institute (BSI)

Answer 116

A

Part 1: Guidance on best practices for continuity management

Part 2: A Specification for a Business Continuity Management System (BCMS)

Answer 117

A

Business Continuity Management System (BCMS)

Answer 118

A

1: Policy and Program Mgt
2: Understanding the Organization
3: Determining BCM strategy
4: Developing and Implementing BCM response
5: Exercising, Maintaining and reviewing BCM response
6: Embedding BCm in Culture

Answer 119

A

BCI (Business Continuity Institute)

Answer 120

A

A: Maximum Allowable Downtime (MAD)

Answer 121

A

D: Safety of Personnel

Answer 122

A

C: Payroll

Answer 123

A

C: Tabletop Exercise

Answer 124

A

D: OEP (Occupant Emergency Plan)

Answer 125

A

A: Differential Backup

Answer 126

A

B: BCP is an overarching umbrella that includes other focused plans such as DRP

Answer 127

A

A: Active – Active cluster

Answer 128

A

C: Crisis management Plan

Answer 129

A

B: Business Resumption Planning (BRP)

Answer 130

A

C: the Mean Time to repair (MTTR)

Answer 131

A

C: Recovery Point Objective (RPO)

Answer 132

A

C: ISO/IEC-27031

Brainscape's Knowledge GenomeTM

Business Continuity and Disaster Recovery Planning Flashcards

Brainscape's Knowledge Genome^TM