Domain 4- DR and Backups

Question 1

Load balancing

Answer 1

uninterrupted system availability by distributing traffic across multiple servers.

Question 2

Disk mirroring

Answer 2

real-time replication of disk drives

Question 3

Redundant Array of Inexpensive Disks (RAID) technology

Answer 3

With RAID technology, data can be mirrored on one or more disks in the same array, so that if one disk fails, the data is preserved.

Question 4

RTO

Answer 4

The RTO is the amount of time allowed for the recovery of a business function or resource after a disaster occurs.

Question 5

RPO

Answer 5

The RPO indicates the earliest point in time that is acceptable to recover the data, and it effectively quantifies the permissible amount of data loss in case of interruption. The recovery point objective (RPO) has the greatest influence on the recovery strategies for given data.

Question 6

business impact analysis (BIA

Answer 6

(BIA) will give the impact of the loss of each application. A BIA is conducted with representatives of the business that can accurately describe the criticality of a system and its importance to the business.

Question 7

Purpose of Disaster Recovery Tests

Answer 7

The purpose of the test is to test the backup plan. When the backup systems are not working then the plan cannot be counted on in a real disaster. This is the most serious problem.

Question 8

IT assets inventory

Answer 8

An IT assets inventory is the basic input for the business continuity/disaster recovery plan, and the plan must be updated to reflect changes in the IT infrastructure. Before validating that the new hardware is compatible with the recovery site, the business continuity manager should update the listing of all equipment and IT assets included in the business continuity plan (BCP).

Question 9

uninterrupted operations in an organization with IT operation centers in several countries

Answer 9

During a disaster, the chain of command might be interrupted. Therefore, it is important that employees know their roles in the BCP, including where to report and how to perform their job functions.

Question 10

Offsite backups

Answer 10

A RAID system, at any level, will not protect against a natural disaster. The problem will not be alleviated without offsite backups.

Question 11

Disk-to-disk backup, also called disk-to-disk-to-tape backup or tape cache

Answer 11

primary backup is written to disk instead of tape

Question 12

Service Delivery Objective (SDO)

Answer 12

The service delivery objective (SDO) is the level of service to be reached during the alternate process mode until the normal situation is restored. This is directly related to the business needs.

Question 13

Mirrored hard disks

Answer 13

Mirrored hard disks will ensure that all data are backed up to more than one disk so that a failure of one disk will not result in loss of data.

Question 14

Hot Site

Answer 14

Always the best BUT costly solution. Go for warm site or reciprical aggreements

Question 15

media creation date

Answer 15

will reflect the point to which data are to be restored or the RPO.

Question 16

Reciprical Aggreements

Answer 16

cost effective, hardware and software need to be compatible, preferablly not in the same geographic location

Question 17

cold site

Answer 17

non critical systems, high rto, even if sensitive data

Question 18

acceptable downtime

Answer 18

Recovery time objective (RTO) is determined based on the acceptable downtime in case of a disruption of operations. It indicates the maximum tolerable outage that an organization considers to be acceptable before a system or process must resume following a disaster.

Question 19

incremental backup

Answer 19

In an incremental backup, after the full backup, only the files that have changed are backed up, thus minimizing media storage.

Question 20

DR Tests

Answer 20

A. Preparedness tests involve simulation of the entire environment (in phases) at relatively low cost and help the team to better understand and prepare for the actual test scenario.

B. Paper tests in a walk-through test the entire plan, but there is no simulation and less is learned. It also is difficult to obtain evidence that the team has understood the test plan.

C. Full operational tests would require approval from management, are not easy or practical to test in most scenarios and may trigger a real disaster.

D. An actual service disruption is not recommended in most cases unless required by regulation or policy.

Question 21

Core Element of DR

Answer 21

but the core element of disaster recovery (the recovery of IT infrastructure and capability) is data backup.

Question 22

shadow file processing

Answer 22

exact duplicates of the files are maintained at the same site or at a remote site. The two files are processed concurrently. This is used for critical data files such as airline booking systems.

Question 23

Electronic vaulting

Answer 23

Electronic vaulting electronically transmits data either to direct access storage, an optical disc or another storage medium; this is a method used by banks. This is not usually in real time as much as a shadow file system is.

Question 24

Tabletop Testing

Answer 24

If IT conducted a paper-based test of the procedures with all responsible members, this would help to ensure that the procedures meet requirements so that they are useful and practical at the time of a real disaster.

Question 25

Open system Architecture

Answer 25

Open systems are those for which suppliers provide components whose interfaces are defined by public standards, thus facilitating interoperability between systems made by different vendors.

Question 26

SLA- Security Breach

Answer 26

Administration of cloud computing occurs over the Internet and involves more than one participating entity. It is the responsibility of each of the partners in the cloud computing environment to take care of security issues in their own environments. When there is a security breach, the party responsible for the breach should be identified and made accountable. This is not possible if the service level agreement (SLA) does not address the responsibilities of the partners during a security breach.

Question 27

Outsourced Cloud Based- HR Operations AND Healthcare

Answer 27

Having data in multiple countries is the greatest concern because human resources (HR) applicant data could contain personally identifiable information (PII). There may be legal compliance issues if these data are stored in a country with different laws regarding data privacy. While the organization would be bound by the privacy laws where it is based, it may not have legal recourse if a data breach happens in a jurisdiction where the same laws do not apply.

Question 28

SLA

Answer 28

Metrics allow for a means to measure performance. Service level agreements (SLAs) are statements related to expected service levels. For example, an Internet service provider (ISP) may guarantee that their service will be available 99.99 percent of the time.

Question 29

Patches

Answer 29

Always system test NOT Regression Test

Question 30

Portability

Answer 30

Remove Lock in Clause

Question 31

QoS

Answer 31

the main function of QoS is to optimize network performance by assigning priority to business applications and end users through the allocation of dedicated parts of the bandwidth to specific traffic.