Controls To Protect Assets

Question 1

RAID-1

Answer 1

RAID-1

• Data mirrored on two disks
• No striping or parity
• 2 drives - can survive loss of one drive
• More drives - works as long as one drive survives

Question 2

RAID-5

• Number of drives
• striping/mirroring/parity?
• How many can be lost
• How much space available?

Answer 2

RAID-5

• Three or more disks striped like RAID-0
• Parity info striped across all drives
• Can survive loss of one drive
• Equivalent of one drive for parity, so space available equal to size remaining drives

Question 3

RAID-6

• Number of disks
• mirroring/stiping/parity
• number of disk you can lose
• How much space available?

Answer 3

RAID-6

• Extension of RAID-5
• Minimum of four disks
• Striping
• Double parity block distributed to all disks
• Can survive loss of two disks
• Equivalent of two drives for parity, so space available is equal to size of remaining drives

Question 4

RAID-10

-striping/mirroring/parity

Answer 4

RAID-10

• Combines mirroring and striping
• no parity
• Requires at leas four disks
• Add two disks at a time
• If four 500 GB disks -> 1 TB of storage (cuts space in half)
• Can survive loss of two drives (depends on which two drives)

Question 5

Active-Active Load Balancer

Answer 5

Active-Active Load Balancer

-All servers process requests

Question 6

Active-Passive Load Balancer

Answer 6

Active-Passive Load Balancer

-At least one server monitoring and ready to take over

Question 7

Software-Based Load Balancer

Answer 7

Software-Based Load Balancer

-Virtual IP address

Question 8

Affinity Scheduling

Answer 8

Affinity Scheduling

• Load balancers
• Sends client requests to same server based on client’s IP address

Question 9

Full Backup

Answer 9

Full Backup

• Quickest recovery time
• Archive attribute: Cleared

Question 10

Differential Backup

Answer 10

Differential Backup

• Each day back up data that changed since last FULL backup (D is next to F in alphabet)
• As time passes, differential backups grow
• Differential backup reduces time to restore
• To recover, need two backups - last full and last differential
• Archive attribute: NOT Cleared

Question 11

Incremental Backup

Answer 11

Incremental Backup

• Full
• Each day back up data that changed since last INCREMENTAL (or full) backup
• As time passes, incremental backups stay about the same size
• Incremental backup reduces time to backup
• To recover, start with last full, then each incremental
• Archive attribute: Cleared

Question 12

BIA

Answer 12

BIA
Business Impact Assessment
-Part of BCP (Business Continuity Plan)
-Identifies mission-essential functions and critical systems
-Max downtime
-Scenarios
-Potential losses

Question 13

Privacy Threshold Assessment

Answer 13

Privacy Threshold Assessment

• Identifies PII in system
• Simple questionnaire
• If PII, conduct Privacy Impact Assessment

Question 14

Privacy Impact Assessment

Answer 14

Privacy Impact Assessment

• Identify and reduce risks related to loss of PII by reviewing how it’s handled
• Ensure complying with laws, regs

Question 15

RTO

Answer 15

RTO
Recovery Time Objective
-Max time to restore system after outage
-Derived from max allowable outage time in BIA

Question 16

RPO

Answer 16

RPO
Recovery Point Objective
-Point in time where data loss acceptable
-Amount of data can afford to lose
-RPO of one week means weekly backups

Question 17

DRP

Answer 17

DRP
Disaster Recovery Plan
-Hierarchical list of critical systems
-Prioritizes systems to restore first

Question 18

RAID-0

Answer 18

RAID-0

• Striping
• No fault tolerance
• All space available