Disaster Recovery Planning Flashcards
List the 3 backup sites
- Cold site
- Warm site
- Hot site
What are the qualities of a cold site
- little or no equipment
- no network connectivity
- not ready for automatic failover
- no data synchronization
- high risk of data loss
- cheap
What are the qualities of a warm site
- partially redundant equipment
- network connectivity is enabled
- failover occurs within hours or days
- daily or weekly data synchronization
- minimum data loss
- cost effective
What are the qualities of a hot site
- fully redundant equipment
- network connectivity is enabled
- failover occurs within hours or days
- near real time data
- zero data loss
-expensive
What are the 4 different backup types?
- Full - entire data set every time a backup is initiated
- Incremental - only back up the data has been changed or updated since the last backup increment (not the last full backup)
- Differential - back up data that has changed since the last full backup
- Mirrored
Explain the 3-2-2 Backup Strategy
keep 3 copies of data
store 2 backup copies locally but on different devices
store 2 copies offsite (1 remote, 1 to cloud)
What are the 3 deployment options for using AWS as secondary (failover) location for DR?
- self managed AWS DR leveraging third party backup/ data replication tools
- Self managed AWS DR with third party DR orchestration tools
- Vendor managed AWS DR with DRaaS
What are the 8 Decision Assessment Criteria?
- Size/complexity of primary IT infrastructure support
- Supported recovery point objective (RPO)/RTO
- Failover/failback orchestration
- Hypervisor and physical server support
- Data replication method
- DR exercise capability
- Manageability
- Costs
is some data loss acceptable?
yes bc synchronous replication is not available for cloud based storage, asynchronous replication can still provide minimal data loss
why are IT DR exercises often ineffective?
- the exercise scenarios never change and are unrealistic in nature.
- misstep of inexperienced IT DR architects attempt to perform too much on the first exercises.
- do not reflect the changing IT infrastructure to consistently meet committed service levels.
- are not performed on a regular basis.
- IT technical professionals often fall into the trap of thinking of the DR exercise as a pass/fail test.
- Cloud and hybrid IT services are often overlooked.
what are the 10 things to include in DR plan checklist
- Recovery Time Objective (RTO) and Recovery Point Objective (RPO)
- Hardware and Software Inventory
- Identify Personnel Roles
- List of Disaster Recovery Sites
- Remote Storage of Physical Documents and Storage Media
- Disaster Response Procedures
- Identify Sensitive Data
- Define a Communication Plan for Disaster Events
- Physical Facility Needs
- Run Disaster Recovery Drills
What is Recovery Time Objective (RTO)
the maximum time your organization can tolerate for recovering normal operations
What is Recovery Point Objective (RPO)
the maximum amount of data your organization can afford to lose
What makes up hardware and software inventory
- comprehensive
- up to date
- categorized (critical, important, unimportant)
What are some examples of identifying personnel roles
- Ongoing backups and maintenance of business continuity systems
- Declaring a disaster
- Contacting third-party vendors
- Reporting to management and liaising with customers, press, etc.
- Managing the crisis and recovering
