Business Resilience Flashcards
What does applying a retention date on a file ensure?
That data will not be deleted before that date
i.e. A retention date will ensure that a file cannot be overwritten or deleted before that date has passed.
What would be the BEST cost-effective test of the disaster recovery plan (for offices across a wide geographical area)?
A Preparedness test
i.e. This is performed by each local office/area to test the adequacy of the preparedness of local operations for disaster recovery.
What type of offsite information processing facility has electrical wiring, air conditioning and flooring, but no computer or communications equipment?
A Cold site
Why? - Because it is ready to receive equipment but does not offer any components at the site in advance of the need.
True or False.
Disaster recovery planning addresses the operational part of business continuity planning (BCP).
FALSE.
Disaster recovery planning addresses the technological part of BCP.
i.e. The focus is on IT systems and operations.
What practice would ensure the availability of transactions in the event of a disaster?
Transmitting transactions offsite in real time.
What is the method of routing traffic through split cable or duplicate cable facilities called?
Diverse Routing (which routes traffic through split-cable facilities or duplicate-cable facilities)
Note: This type of access is time consuming and costly.
What happens if the recovery time objective increases?
The disaster tolerance increases (I.e. The longer the recovery time objective (RTO), the higher disaster tolerance)
Note: The disaster tolerance is the amount of time the business can afford to be disrupted before resuming critical operations.
True or False.
If the recovery time objective increases, the cost of recovery increases.
FALSE.
The longer the RTO, the lower the recovery cost
What is the primary objective of a Business Continuity Plan?
To identify limitations of the business continuity plan
What would be considered an appropriate method of transfer/backup in design of a business continuity plan for an airline reservation system?
Shadow file processing
i.e. exact duplicates of the files are maintained at the same site or at a remote site. The two files are processed concurrently.
What is considered the most appropriate test method to apply to a business continuity plan?
A Paper test (sometimes called a deskcheck)
i.e. It is a walk-through of the entire BCP, or part of the BCP, involving major players in the BCP’s execution
What is the next step in a business continuity planning process after completing an business impact analysis (BIA)?
Developing recovery strategies.
i.e. determining the most appropriate strategy for recovering from a disaster that will meet the time lines and priorities defined through the BIA.
What would be considered a continuity plan test that simulates a system crash and uses actual resources to cost-effectively obtain evidence about the plan’s effectiveness?
Preparedness Test
This is a localized version of a full test, wherein resources are expended in the simulation of a system crash.
What would be considered an appropriate method for assessing the effectiveness of a business continuity plan?
Reviewing the results from previous tests
i.e. Previous test results will provide evidence of the effectiveness of the business continuity plan
What frequently updated information is key to the continued effectiveness of a disaster recovery plan?
Contact information of key personnel
Why? - Because in the event of a disaster, it is important to have a current updated list of personnel who are key to the operation of the plan