Chapter 8: Disaster Recovery Flashcards
Is an element of an internal control system established to maintain availability and restoration of critical processes in the event of interruption
Disaster Recovery Planning
What are the two goals of DRP
- Respond to incidents that impact people and operations
- Comply with regulatory requirements
It indicates the earliest point in time in which it is acceptable to recover data
RPO
RPO and RTO: The RPO is determined based on what?
Acceptable data loss
RPO and RTO: It is possible to recover every data that was affected by the disaster (T or F)
False. It is impossible
RPO and RTO: What do you call data that is lost
Orphan data
It indicates the earliest point in time at which the business operations must resume after a disaster
Recovery Time Objective
RPO and RTO: The RTO is determine based on?
Acceptable downtime
The RTO includes business operations recovery only (T or F)
False. It includes supporting IT systems
RPO and RTO: What is the relationship of cost and technology with reference to time to disruption?
the nearer the RPO and RTO to the time of disruption, the higher the cost and technology
RPO and RTO: What can you employ for RPO and RTO with the lowest acceptable data loss and downtime?
For RPO: Data Mirroring, Real Time Replication
For RTO: Mirror Site/ Hot site, Dedicated Spare Servers and Clustering
RPO and RTO: It is the time gap within which the business can accept the unavailability of IT critical service
Disaster Tolerance
RPO and RTO: What is the relationship of disaster tolerance and RTO?
The lower the RTO, the lower the disaster tolerance
RPO and RTO: The RTO is focused on _____ solutions, while the RPO is focused on ___ ___ solutions.
Recovery; data protection
RPO and RTO: What are the additional parameters that are important in defining the recovery strategies?
Interruption Window
Service Delivery objective
Maximum tolerable outages
Recovery Strategies: the maximum period of time the organization can wait from the point of failure to the critical services restoration
Interruption Window
Recovery Strategies: What can happen if the interruption window is exceeded?
The losses incurred by the company becomes unaffordable
Recovery Strategies: Level of services to be reached during the alternate process mode until the normal situation is restored (minimum of level of serviceability to be achieved while restoring to normal operations)
Service delivery objective (SDO)
Recovery Strategies: The SDO is related to what?
Business needs (Critical operations)
Recovery Strategies: Maximum time the organization can support processing in alternate mode.
Maximum tolerable outages (MTO)
Recovery Strategies: After the MTO, different problems may arise especially if?
- The SDO is lower than the usual SDO
- The information pending to be updated becomes unmanageable
Identifies the best way to recover a system (may be on or many) in case of an interruption.
Recovery Strategy
Recovery Strategies: There can only be one recovery strategy (T or F)
False. Strategies with different alternatives must be developed
Recovery Strategies: The developed recovery strategies must be presented to ?
Senior Management
Recovery Alternatives: When the normal production facilities become unavailable, the business may use?
Alternate facilities
Recovery Alternatives: facilities with the space and basic infrastructure but lack IT equipment and communications.
Cold sites
Recovery Alternatives: Plans that utilize cold sites should have what?
A provision for the installation of requisite hardware and software
Recovery Alternatives: packaged, modular processing facilities mounted on transportable vehicles and kept ready to be delivered
Mobile Sites
Recovery Alternatives: a plan that uses mobile sites must do what 3 things?
- Specify location
- Right of access to the location
- Ancillary infrastructure
Recovery Alternatives: this alternative has complete infrastructure but partially configured IT
Warm site
Recovery Alternatives: Warm sites have network connections already (T or F)
True
Recovery Alternatives: What must be done to the program and data at warm sites before operation can be resumed?
Versions of programs and data must be loaded
Recovery Alternatives: are facilities with space, basic infrastructure and all of the IT and communications equipment to support the critical applications
Hot Site
Recovery Alternatives: What is a difference between hot and warm sites
- Warm sites have partial IT configurations while hot sites have all IT requirements.
- Warm site can support critical applications at an interim basis while Hot Sites can fully support critical applications
Recovery Alternatives: What is a difference between hot sites and mirrored sites
- The amount of staff
- Data may or may not be duplicated in real time for hot sites
Recovery Alternatives: fully redundant sites and users will not perceive any interruption
Mirrored sites
Recovery Alternatives: contracts between similar industry companies to share their IT facilities in case one company loses theirs
Reciprocal agreements
Recovery Alternatives: Reciprocal agreements are viable options for recovery (T or F)
False. It is not
Recovery Alternatives: Mobile sites can be from a third party (T or F)
True
Recovery Alternatives: a recovery alternative that involves two or more organizations with unique equipment or applications
Reciprocal agreements with other organization
Recovery Alternatives: What is needed when an alternate processing facilities come from a third party?
SLA
Development of DRP: the DRP is done after what?
BIA and Risk assessment
Development of DRP: the DRP must be what 2 things?
- Documented
- Written in simple language
Development of DRP: the DRP typically contains which 10 things
- Escalation procedures
- Plan activation criteria
- How it links with overarching plans
- People responsible per function in plan execution
- Recovery teams and their responsibilities
- Contact and notification list
- The step by step of the whole recovery process
- Recovery procedures for each component
- Contacts for vendors
- Resources required for recovery
Development of DRP: copies of the plan should be?
Maintained off-site
DR Testing Methods: Based on the risk assessment and BIA, which are identified for testing
Critical applications and infrastructure
Recovery plans MUST be tested (T or F)
TruTruee
DR Testing Methods: what must be developed to ensure that measurable benefits can be achieved?
Test objectives
DR Testing Methods: Who must be present in the testing and what are their roles?
An independent third party
A recommendation list
DR Testing Methods: Sometimes, recovery plans can be without fault, and no further actions need to be done. (T or F)
False, no plan is perfect
DR Testing Methods: usually the preliminary step to a real test
Checklist review
DR Testing Methods: checklists are given to the recovery team for review to ensure?
That it is current
DR Testing Methods: physically implement the plans on paper and review each steep to assess its effectiveness
Structured walk through
DR Testing Methods: a disaster role play without activating the recovery site
Simulation test
DR Testing Methods: The role play is done with the recovery site but primary site continues operations
Parallel Test
DR Testing Methods: operations are shut down at the primary site and shifted to the recovery site (Full on role play)
Full interruption test