Chapter 14 - Business Continuity Flashcards

1
Q

Business continuity

A

The ability of an organization to maintain its operations and services in the face of a disruptive event.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Single point of failure

A

A component or entity in a system which, if it no longer functions, would adversely affect the entire system.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

High availability

A

A system that can function for an extended period of time with little downtime.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Mission-essential function

A

The activity that serves as the core purpose of the enterprise.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Disaster recovery plan (DRP)

A

A written document that details the process for restoring IT resources following an event that causes a significant disruption in service.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Fault tolerance

A

A systems ability to deal with malfunctions.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Redundancy

A

The use of duplicated equipment to improve the availability of the system.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

Mean time to recovery (MTTR)

A

The average time for a device to recover from a failure that is not a terminal failure

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

Mean time between failures (MTBF)

A

A statistical value that is the average time until a component fails, cannot be repaired, and must be replaced.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

Redundant Array of Independent Drives (RAID)

A

A technology that uses multiple hard disk drives for increased reliability and performance.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Hot site

A

A duplicate of the production site that has all the equipment needed for an organization to continue running, including office space and furniture, telephone jacks, computer equipment, and a live telecommunications link.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

Cold site

A

A remote site that provides office space; the customer must provide and install all the equipment needed to continue operations.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

Warm site

A

A remote site that contains computer equipment but does not have active internet or telecommunication facilities, and does not have backups of data.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

Data backup

A

The process of copying information to a different medium and storing it at an offsite location so that it can be used in the event of a disaster.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

Recovery point objective (RPO)

A

The maximum length of time that an organization can tolerate between backups.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

Recovery time objective (RTO)

A

The length of time it will take to recover data that has been backed up.

17
Q

Full backup

A

The starting point for all backups that copies the entire set of data.

18
Q

Differential backup

A

A backup that copies any data that has changed since last full backup.

19
Q

Incremental backup

A

A backup that copies any data that has changed since last full backup or last incremental backup.

20
Q

Data sovereignty

A

The concept that data stored in a digital format is subject to the laws of the country in which the storage facility resides.

21
Q

Electromagnetic interference (EMI)

A

Electromagnetic fields emitted from technology devices that can result in interference.

22
Q

Electromagnetic pulse (EMP)

A

A short duration burst of energy by the source.

23
Q

Faraday cage

A

A metallic enclosure that prevents the entry or escape of an electromagnetic field.

24
Q

Forensics

A

The application of science to questions that are of interest to the legal profession.

25
Q

Incident response plan (IRP)

A

A set of written instructions for reacting to a security incident.

26
Q

The 6 action steps to be taken when an incident occurs, called the incident response process, also make up the 6 elements of an IRP

A

1) preparation
2) identification
3) containment
4) eradication
5) recovery
6) lessons learned

27
Q

Chain of custody

A

A process of documentation that shows that the evidence was always under strict control and no unauthorized individuals were given the opportunity to corrupt the evidence.