Comparing BCM Elements Flashcards
At a high-level, the Business Impact Analysis identifies 3 things. What are they?
It identifies the critical systems the business requires in order to carry out it’s most essential functions
It identifies the impact and losses from a variety of disaster scenarios
It identifies the maximum downtime limit for these systems
What tool is used when completing a BIA and helps the organization identify Personally Identifiable Information?
the Privacy Threshold Assessment
If Personally Identifiable Information is found during a Privacy Threshold Assessment, what needs to be carried out next?
A Privacy Impact Assessment.
It reviews how PII data is handled to ensure the company is complying with laws and regulations.
Continuity of Operations Planning focusses on restoring what?
mission essential functions performed at a recovery site after a critical outage
Continuity of Operations Planning focusses on restoring what?
mission essential functions performed at a recovery site after a critical outage
Besides hot, cold and warm recovery sites, name two more and short descriiption
1) mobile site - self-explanatory.
2) mirrored site - always up and operational
What is typically developed after a Business Impact Analysis is done and has identified critical systems/impacts etc?
A Disaster Recovery Plan
AIR-TA are the phases of the disaster recovery process, what are they?
1) Activate the plan
2) Implement contingencies (like moving to different site, obtaining off-site backups)
3) Recover Critical Systems - get the systems back up and in right order
4) Test Recovered Systems
5) After-action Report
In testing BCM plans, what’s the difference between tabletop and functional testing?
tabletop is discussion based, functional involves performing controlled ‘failures’ or tests on IT assets themselves.
bcrypt and PBKDF2 prevent what types of attack?
brute force and rainbow table
