Domain 4- DR and Backups Flashcards
Load balancing
uninterrupted system availability by distributing traffic across multiple servers.
Disk mirroring
real-time replication of disk drives
Redundant Array of Inexpensive Disks (RAID) technology
With RAID technology, data can be mirrored on one or more disks in the same array, so that if one disk fails, the data is preserved.
RTO
The RTO is the amount of time allowed for the recovery of a business function or resource after a disaster occurs.
RPO
The RPO indicates the earliest point in time that is acceptable to recover the data, and it effectively quantifies the permissible amount of data loss in case of interruption. The recovery point objective (RPO) has the greatest influence on the recovery strategies for given data.
business impact analysis (BIA
(BIA) will give the impact of the loss of each application. A BIA is conducted with representatives of the business that can accurately describe the criticality of a system and its importance to the business.
Purpose of Disaster Recovery Tests
The purpose of the test is to test the backup plan. When the backup systems are not working then the plan cannot be counted on in a real disaster. This is the most serious problem.
IT assets inventory
An IT assets inventory is the basic input for the business continuity/disaster recovery plan, and the plan must be updated to reflect changes in the IT infrastructure. Before validating that the new hardware is compatible with the recovery site, the business continuity manager should update the listing of all equipment and IT assets included in the business continuity plan (BCP).
uninterrupted operations in an organization with IT operation centers in several countries
During a disaster, the chain of command might be interrupted. Therefore, it is important that employees know their roles in the BCP, including where to report and how to perform their job functions.
Offsite backups
A RAID system, at any level, will not protect against a natural disaster. The problem will not be alleviated without offsite backups.
Disk-to-disk backup, also called disk-to-disk-to-tape backup or tape cache
primary backup is written to disk instead of tape
Service Delivery Objective (SDO)
The service delivery objective (SDO) is the level of service to be reached during the alternate process mode until the normal situation is restored. This is directly related to the business needs.
Mirrored hard disks
Mirrored hard disks will ensure that all data are backed up to more than one disk so that a failure of one disk will not result in loss of data.
Hot Site
Always the best BUT costly solution. Go for warm site or reciprical aggreements
media creation date
will reflect the point to which data are to be restored or the RPO.
Reciprical Aggreements
cost effective, hardware and software need to be compatible, preferablly not in the same geographic location
cold site
non critical systems, high rto, even if sensitive data
acceptable downtime
Recovery time objective (RTO) is determined based on the acceptable downtime in case of a disruption of operations. It indicates the maximum tolerable outage that an organization considers to be acceptable before a system or process must resume following a disaster.
incremental backup
In an incremental backup, after the full backup, only the files that have changed are backed up, thus minimizing media storage.
DR Tests
A. Preparedness tests involve simulation of the entire environment (in phases) at relatively low cost and help the team to better understand and prepare for the actual test scenario.
B. Paper tests in a walk-through test the entire plan, but there is no simulation and less is learned. It also is difficult to obtain evidence that the team has understood the test plan.
C. Full operational tests would require approval from management, are not easy or practical to test in most scenarios and may trigger a real disaster.
D. An actual service disruption is not recommended in most cases unless required by regulation or policy.
Core Element of DR
but the core element of disaster recovery (the recovery of IT infrastructure and capability) is data backup.
shadow file processing
exact duplicates of the files are maintained at the same site or at a remote site. The two files are processed concurrently. This is used for critical data files such as airline booking systems.
Electronic vaulting
Electronic vaulting electronically transmits data either to direct access storage, an optical disc or another storage medium; this is a method used by banks. This is not usually in real time as much as a shadow file system is.
Tabletop Testing
If IT conducted a paper-based test of the procedures with all responsible members, this would help to ensure that the procedures meet requirements so that they are useful and practical at the time of a real disaster.
Open system Architecture
Open systems are those for which suppliers provide components whose interfaces are defined by public standards, thus facilitating interoperability between systems made by different vendors.
SLA- Security Breach
Administration of cloud computing occurs over the Internet and involves more than one participating entity. It is the responsibility of each of the partners in the cloud computing environment to take care of security issues in their own environments. When there is a security breach, the party responsible for the breach should be identified and made accountable. This is not possible if the service level agreement (SLA) does not address the responsibilities of the partners during a security breach.
Outsourced Cloud Based- HR Operations AND Healthcare
Having data in multiple countries is the greatest concern because human resources (HR) applicant data could contain personally identifiable information (PII). There may be legal compliance issues if these data are stored in a country with different laws regarding data privacy. While the organization would be bound by the privacy laws where it is based, it may not have legal recourse if a data breach happens in a jurisdiction where the same laws do not apply.
SLA
Metrics allow for a means to measure performance. Service level agreements (SLAs) are statements related to expected service levels. For example, an Internet service provider (ISP) may guarantee that their service will be available 99.99 percent of the time.
Patches
Always system test NOT Regression Test
Portability
Remove Lock in Clause
QoS
the main function of QoS is to optimize network performance by assigning priority to business applications and end users through the allocation of dedicated parts of the bandwidth to specific traffic.
