Chapter 6 Disaster Recovery, Business Continuity & Ongoing Maintenance Flashcards
Harold is creating a disaster recovery plan based on corporate requirements that service be restored in the shortest amount of time possible if the primary cloud data center is down. What disaster recovery model would you suggest to Harold?
Hot site
A hot site model is where two fully redundant cloud data centers are in sync with each other, with the standby site backing up the primary in real time in the event of a failure. The hot site offers the most redundancy of any model. It is also the most expensive option and is used when having your cloud computing operations go offline is not an option
Chapter 6 (page 187)
Which disaster recovery measurement defines when you can expect your system to be back online after an outage?
recovery time objective
Or Restore Time Objective (RTO) is the amount of time a system can be offline during a disaster; it is the amount of time it takes to get operations back up and operational after a failure.
Chapter 6 (page 184)
Which disaster recovery measurement defines the amount of lost data after a recovery?
recovery point objective
Or Restore Point Objective (RPO) is the restore point you recover to in the event of an outage. Basically, the RPO indicated the amount of data that may be lost when restarting the operation after a disaster.
Chapter 6 (page 184)
Long-term storage of cloud data is called what?
Archive
Data archiving moves inactive data, or data that is no longer being used, to a separate storage facility for a long-term storage.
Chapter 6 (page 191)
Jeff is preparing to update his company’s business continuity plan with details on their disaster recovery site. His plan is to have a facility ready with floor space, power, and cooling that has facilities for him to load in his server racks to restore service. What type of DR implementation is Jack deploying?
Cold site
The cold site model is where a backup data center is provisioned to take over operations in the event of a primary data center failure but the servers and infrastructure are not operational until needed. A cold site facility may not have any servers or infrastructure installed, so to recover from an outage, the cold site approach will need significant amounts of installation and preparation before it is ready to be utilized.
Chapter 6 (page 188)
BigCo has been performing an ongoing inventory of their public cloud assets and found a number of storage volumes, CPU allocations, VMs, and firewall instances that are not connected to any project and are not being used. What are these services called?
Orphaned resources
Orphaned resources are cloud-based services that are left over when a service terminates and are no longer needed or used. When you enable cloud-based resources such as servers, storage arrays, load balancers, content distribution, DNS, databases, or any other offerings, you may find it to be a challenge to monitor and manage all of these resources. When a service is no longer being used or was enabled for a short period of time, it is all too frequently the case that the service do not get terminated properly and remain active and chargeable even if they are not being used..
Chapter 6 (page 200)
Which disaster recovery model is when the remote backup of the site is offline except for critical data storage, which is usually a database.
Warm site
A warm site approach to recovering from a primary data center outage is when the remote backup site is offline except for critical data storage, which is usually a database server at the primary data center.
Chapter 6 (page 187)
To allow data to be moved to long-term storage off-site, an ____ process is performed.
Archiving
Protecting your data is critical for any recover operations. Storage systems offer sophisticated data management techniques to protect you from losing critical data. When archiving data, the service may be provided by the cloud service provider with its storage or backup offerings.
Chapter 6 (page 191)
____ ____ as a Service companies perform failover, testing, and restoration services.
Disaster Recovery
Disaster Recovery as a Service (DRaaS) are companies that offer consulting and management services aimed at assisting companies with their DR requirements. They have a large knowledge base and specialized in DR.
Chapter 6 (page 192)
____ ____ is the ability for an organization to continue operations and be able to deliver products and services after an event that disrupts its operations. It is the planning and preparation for a failure or outage the steps for a business to quickly recover to an operational state
Business continuity
Business continuity is defined as preparing for a failure or outage and compiling the steps for a business to quickly recover to an operational state.
The business continuity plan is defined as the creation of a plan with the recognition that there are inherent threats and risks that can have a detrimental effect on a company; it defines how to protect the company assets and to be able to survive a disaster.
Chapter 6 (page 192)
A ___ ____ SLA will outline the fundamental issues of determining the business impact, performing a risk assessment, managing the risk, and planning for a disaster.
Disaster Recovery
Also, the SLA will include metrics such as the RPs and RTOs for the services offered, and the SLA metrics are highly dependent on the type of offerings such as IaaS, PaaS, or SaaS
Chapter 6 (page 195)
Security service providers offer account management as a standard offering and can do an inventory of accounts, groups, roles, federations, and two-factor accounts based on defined metrics. This is referred to as managing and removing ____ accounts.
inactive
Ongoing maintenance requires that accounts that are no longer used be removed or disabled. This is a standard best practice that allows for a clean configuration and reduces your cyber-attack exposure.
Chapter 6 (page 199)
____ is the transfer and synchronization of data between multiple data centers.
Replication
For disaster recovery purposes and data security, your data must be transferred, or replication, between data centers. Remote copies of data have traditionally been implemented with storage backup applications.
Chapter 6 (page 189)
The ____ is the amount of data that can be lost because of an outage, and the ____ is a measure of the amount of time a system can be offline during an outage.
RPO
RTO
Recovery Point Objective (RPO) is the restore point you recover to in the event of an outage. Basically, the RPO indicated the amount of data that may be lost when restarting the operations after a disaster.
Recovery Time Objective (RTO) is the amount of time a system can be offline during a disaster; it is the amount of time it takes to get operations back up and operational after a failure.
Chapter 6 (page 184)
By using a central server, you consolidate all of the ____ generated and have the ability to review and audit the collected data.
logs
Most computing, storage, and networking gear generates system log files detailing ongoing events.
Logging information from all the devices being monitored and managed is sent to central logging server and archived.
Chapter 6 (page 198)
____ ____ are cloud-based services that are left over when a service terminates and are no longer needed or used.
Orphaned resources
When a service is no longer being used or was enabled for a short period of time, it is all too frequently the case that the services do not get terminated properly and remain active and chargeable even if they are not being used.
Chapter 6 (page 200)
Data systems such as databases or storage volumes can be deployed in multiple data centers for fault tolerance. Implementing a/an ____ replication system will ensure that the data remains synchronized at all times.
Synchronous
Synchronous replication is the process of replicating data in real time from the primary storage system to a remote facility. Synchronous replications allow you to store current data at a remote location from the primary data center that can be brought online with a short recovery time and limited loss of data.
Chapter 6 (page 190)
Data replication is often used to store copies of real-time data in remote zones. When there is a need to have the master data immediately updated, and then on the backend, update the remote zones, what type of replication would you recommend your operation department to configure?
A. Synchronous B. Asynchronous C. Volume sync D. Mirroring E. RAID 5
Asynchronous
Asynchronous replication is when data is written to the primary first, and then later a copy is written to the remote site on a scheduled arrangement or in nearly real time.
Synchronous replication is the process of replicating data in real time from the primary storage system to a remote facility.
Sharon has been directed to put together a disaster recovery plan based on directives from her company’s executive management team. The company’s core business is operating an e-commerce website selling winter apparel with 85 percent of its revenue received during the holiday season. If there was a prolonged outage, it would put the company’s ability to continue as a financially viable operation in peril. Sharon has been instructed to create a plan that will restore operations in the shortest amount of time possible. What DR model should she implement?
A. Hot site B. Active/active C. Warm site D. Active/passive E. Cold site F. Rollover
Hot site
The hot site model is the most viable option given the requirements. A hot site is a fully functional backup site that can assume operations immediately should the primary location fail or go offline.
Which disaster recovery metrics are used to create a measurable SLA that outlines to you when you can expect your system to be back online and how much data loss you sustained after an outage? (Choose all that apply.)
A. RSO B. RTO C. RPO D. DR E. VxRestore
RTO, RPO
The restore point and restore time objectives are the measurements for the amount of data lost and the time needed to get back online after an outage.
These cloud facilities provide the ability to connect locally for fast, low-latency connection to the DR locations. They can also store, or cache, data at theses locations for very fast responses to local user requests.
A. Region
B. Edge location
C. Availability zone
D. Replication
Edge location
Edge facilities are not complete cloud data centers. They are cloud connection points located in major cities and offer the benefits outlined in the question.
Chapter 6 (page 194)
Computer operating systems have mechanism that grant rights to users for access to system objects like storage volume directories and files, administrator rights, and so on. What should you monitor to make sure that old or unused entries are deleted?
A. Stale cache
B. Access control
C. MFA
D. Dashboard
Access Control
Access control systems are used to grant users object access in an operating system. For ongoing maintenance and best security practices, it is important to delete old and unused access control policies.
James has been directed by his employer’s finance department that they cannot afford to lose any more than 30 minutes of data in the case of a database failure or other catastrophic event. James has updated his corporate business continuity plan and has had his cloud provider update its SLA. What was the metric that was changed?
A. RSO
B. RPO
C. RTO
D. DBO
RPO
The restore point objective is the point in time that data can be recovered; James had to update the RPO metric.
To meet regulatory requirements, Jill must store customer transaction records for seven years. The data will most likely never be accessed after the second year and can be stored offline if possible to reduce storage costs. What type of storage operation can Jill implement to achieve her goal?
A. File transfer
B. Archive
C. Replication
D. Data store
Archive
Moving inactive data or data that is no longer being used to a separate storage facility for long-term storage is referred to as archiving. It can be more cost effective to store archived data in less expensive storage systems and still allow the cloud consumer access to that data for backup and retrieval as needed.