Business Continuity and Disaster Recovery Planning Flashcards
BCP
Business Continuity Plan. A long-term to ensure continuity of business operations. Goal is to ensure a business will continue to operate before, throughout and after a disaster event.
COOP
Continuity of Operations Plan. A plan to maintain operations during a disaster.
DRP
Disaster Recovery Plan. A short-term plan to recover from a disruptive event.
MTBF
Mean Time Between Failures. Quantifies how long a new or repaired system will run on average before failing.
MTTR
Mean Time To Repair. Describes how long it will take to recover a failed system.
PIDAS Fence
Perimeter Intruder Detection Assessment System
Disruptive Events (Disaster) Types (3)
Natural, Human or Environmental
MTD
Maximum Tolerable Downtime.
Consists of:
(1) RTO - Recovery Time Objective
(2) WRT - Work Recovery Time
DRP Process Steps
Respond, Activate Recovery Team, Communications, Assessment & Reconsistution
BCP/DRP Planning Steps
Project Initiation Scope the Project Business Impact Analysis Identify Preventive Controls Recovery Strategy Plan Design and Development Implementation, Training and Testing BCP/DRP Maintenance
BIA
Business Impact Analysis. Process for determining how a disruption to the IT systems of an organization will impact the organization’s requirements, processes and interdependencies.
BIA Components (2)
(1) Identification of critical assets
(2) Comprehensive risk analysis
Failure and Recovery Metrics
RPO, RTO, WRT, MTBF MTTR MORs
RPO
Recovery Point Objective. The amount of data loss or system inaccessibility that an organization can withstand.
RTO/WRT
Recovery Time Objective/Work Recovery Time. RTO is the maximum time allowed to recover business or IT systems - how long it take to get the hardware running. WRT is the time needed to configure a recovered system.