Lecture 11 Flashcards

Business continuity & disaster recovery planning

1
Q

______ focuses on maintaining business operations with reduced or restricted infrastructure capabilities or resources.

A. Disaster Recovery plan
B. Business Continuity plan
C. Backup Plan

A

B. Business Continuity plan

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

What are the 4 steps to a BCP, according to ISC2?

A
  1. Project scope and planning
  2. Business impact assessment
  3. Continuity planning
  4. Approval and implementation
How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

The following steps are part of what BCP phase?
Business Organization Analysis, BCT Team Selection, Resource requirements,Legal & regulatory requirements.

A. Project scope and planning
B. Business impact assessment
C. Continuity planning
D. Approval and implementation

A

A. Project scope and planning

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

The ______ step of the BCP identifies critical resources and threats posed to those resources. It is a ranking system that assesses the likelihood a threat will occur and the impact of those occurrences.

A. Project scope and planning
B. Business impact assessment
C. Continuity planning
D. Approval and implementation

A

B. Business impact assessment

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

The _____ is the maximum length of time a business function can be inoperable.

A

Maximum Tolerable Downtime (MTD)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

The _____ of a business function is the amount of time in which you think you can feasibly recovery the function.

A

Recovery Time Objective (RTO)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

What is the goal of the Recovery Time Objective?

A

Be less than the Maximum Tolerable Downtime (MTD)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
8
Q

What is the formula for the Single loss expectancy?

A

SLE=AV X EF

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
9
Q

What is the formula for the Annualized Loss Expectancy?

A

ALE = SLE X ARO

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
10
Q

this plan focuses on determining how the BCP process works and what assets need protecting.

A. Project scope and planning
B. Business impact assessment
C. Continuity planning
D. Approval and implementation

A

C. Continuity planning

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
11
Q

Who ultimately must approve the BCP?

A

Senior management

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
12
Q

_____ comes into play when a BCP fails to prevent interruption of business activities.

A

Disaster Recovery Pan (DRP)

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
13
Q

In a_____ business functions/units must be prioritized. You can also break down the functions/units into specific business processes.

A

DRP

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
14
Q

A facility that is available for use and is equipped with the environmental support systems ready.

A. Cold Site
B. Hot Site
C. Warm Site

A

A. Cold Site

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
15
Q

A facility that is ready for use, but typically does not have the actual data immediately ready for use.

A. Cold Site
B. Hot Site
C. Warm Site

A

C. Warm Site

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
16
Q

A facility that is ready to use and is maintained in working order with backups and servers/systems ready for use immediately.

A. Cold Site
B. Hot Site
C. Warm Site

A

B. Hot Site

17
Q

A ______ is where two organizations pledge to assist each other in the event of a disaster.

A

Mutual Assistance Agreement (MAA)

18
Q

What are some ways to ensure databases are not lost?

A

Electronic vaulting- bulk transfer
Remote journaling- db transaction logs are copied over
Remote mirroring- live backup is maintained

19
Q

A DRP must contain a ______; checklist for first responders.

A

Emergency-response plan

20
Q

A _____ backup contains the data since the last full backup. A full backup and this backup are sufficient to restore.

A

Differential

21
Q

A _____ backup contains the data since the last full or ____ backup. A full backup and each following ____ backup must be used.

A

Incremental

22
Q

A ______ is used to protect you if there is a failure of the software development contractor. You can get access to the source code if the company goes out of business.

A

Software Escrow arrangement

23
Q

____ is restoring business operations and processes to a working state.

A. Recovery
B. Restoration

A

A. Recovery

24
Q

____ is the restoration of a business facility and environment to a workable state.

A. Recovery
B. Restoration

A

B. Restoration

25
Q

A _____ test involves relocating personnel to the alternate site and implement activation procedures

A

parallel test

26
Q

A ____ test involves shutting down operations and shifting them to the alternate site.

A

Full-interruption