Use LEFT and RIGHT arrow keys to navigate between flashcards;
Use UP and DOWN arrow keys to flip the card;
H to show hint;
A reads text to speech;
47 Cards in this Set
- Front
- Back
What is a disaster? |
Any natural or man-made event that disrupts the operations of a business in such a significant way that a considerable and coordinated effort is required to achieve recovery. |
|
Name 4 types of natural disasters. |
1. Geological
2. Meteorological 3. Health 4. Other (fires, floods, solar storms) |
|
Name 4 types of man-made disasters. |
1. Labor
2. Social-political 3. Material 4. Utilities |
|
What does CIA stand for? |
Confidentiality
Integrity
Availability |
|
How do BCP and DRP support the security pillars? |
BCP and DRP directly support availability. |
|
What is BCP? |
* activities required to ensure the continuation of critical business processes in an organization
* alternate personnel, equipment, and facilities |
|
What is DRP? |
* Assessment, salvage, repair, and eventual restoration of damaged facilities and systems.
|
|
What are the 6 industry standards supporting BCP and DRP? |
1. ISO17799
2. BS25999 3. NIST 800-34 4. NFPA 1600 5. NFPA 1620 6. HIPAA |
|
What are the 5 benefits of BCP and DRP planning? |
1. Reduced risk
2. Process improvements 3. Improved organizational maturity 4. Improved availability and reliability 5. Marketplace advantage |
|
What does BIA stand for? |
Business Impact Assessment |
|
What are the key metrics used to measure business impact during a BIA? (3) |
* Maximum tolerable downtime
* Recovery time objective * Recovery point objective |
|
What does MTD stand for? |
Maximum Tolerable Downtime |
|
What are 3 metrics used to develop statements of impact? |
* Cost to operate the process
* Cost of process downtime * Profit derived from the process |
|
What does RTO stand for? |
Recovery time objective. |
|
What is RTO? |
Period of time from disaster onset to resumption of business processes. |
|
What is RPO? |
Maximum period of data loss from onset of disaster counting backwards. |
|
What does RPO stand for? |
Recovery point objective. |
|
What are the 5 parts of Emergency Response? |
1. Personnel safety
2. Evacuation 3. Asset protection 4. Damage assessment 5. Emergency notification |
|
What are the 5 levels of testing business continuity and disaster recovery plans? |
1. Document review
2. Walkthrough 3. Simulation 4. Parallel test 5. Cutover test |
|
What is document review? |
* Review of recovery, operations, resumption plans and procedures.
* Performed by individuals. * Provide feedback to document owners * Least impact, lowest risk, least benefit. |
|
What is a walkthrough? |
* Group discussion of recovery, operations, resumption plans and procedures.
* Performed by teams. * Brainstorming and discussion brings out new issues, ideas. * Provide feedback to document owners * Low impact, lowest risk, moderate benefit |
|
What is simulation? |
* Walkthrough of recovery, operations, resumption plans and procedures in a scripted "case study" or "scenario".
* Performed by teams. * Places participants in a mental disaster setting that helps them discern real issues more easily. * Low impact, low risk, moderate benefit |
|
What is parallel test? |
* Full or partial workload is applied to recovery systems.
* Performed by teams. * Tests actual system readiness and accuracy of procedures * Production systems continue to operate and support actual business processes * Moderate impact, low risk, moderate benefit. |
|
What is a cutover test? |
* Production systems are shut down or disconnected; recovery systems assume full actual workload.
* Performed by teams. |
|
BCP is concerned with _______________ of processes. |
continuation |
|
DRP is concerned with __________ of facilities. |
recovery. |
|
What are the benefits of BCP and DRP? |
* process improvement
* reduced risk * market advantage |
|
What are the 4 components of BIA? |
1. Inventory processes
2. Perform risk and threat management 3. Assign recovery targets 4. Perform criticality assessment |
|
What are the 6 components of a DRP and BCP plan? |
1. Emergency response
2. Damage assessment and salvage 3. Communications 4. Personnel evacuation and safety 5. Restoration and recovery 6. Business resumption |
|
Which recovery plan test results would be most useful to management? |
list of successful and unsuccessful activities. |
|
What is the most important consideration in locating an alternate computing facility during the development of a disaster recovery plan? |
It is unlikely to be affected by the same disaster. |
|
_________________ is defined as the most recent point in time to which data must be synchronized without adversely affecting the organization (financial or operational impacts)? |
RPO (Recovery Point Objective) |
|
If your property Insurance has Actual Cash Valuation (ACV) clause, your damaged property will be compensated based on ___________________________. |
Value of item on the date of loss |
|
Business Continuity and Disaster Recovery Planning (Primarily) addresses the __________________ of the CIA triad. |
Availability of the CIA triad |
|
Notifying the appropriate parties to take action in order to determine the extent of the severity of an incident and to remediate the incident's effects is part of:___________________. |
Incident Response. |
|
A server farm consisting of multiple similar servers seen as a single IP address from users interacting with the group of servers is an example of _________________________ |
Server clustering. |
|
When preparing a business continuity plan, who of the following is responsible for identifying and prioritizing time-critical systems? |
Senior business unit management |
|
How often should tests and disaster recovery drills be performed? |
At least once a year |
|
Mark's manager has tasked him with researching an intrusion detection system for a new dispatching center. Mark identifies the top five products and compares their ratings. Which of the following is the evaluation criteria most in use today for these types of purposes? |
Common Criteria. |
|
Who should direct short-term recovery actions immediately following a disaster? |
Disaster Recovery Manager. |
|
If your property Insurance has Actual Cash Valuation (ACV) clause, your damaged property will be compensated based on _____________________________________. |
Value of item on the date of loss |
|
Which backup method makes a complete backup of every file on the server every time it is run? |
full backup method. |
|
During the testing of the business continuity plan (BCP), which method of results analysis provides the BEST assurance that the plan is workable? |
Quantitatively measuring the results of the test |
|
What is true regarding an off-site information processing facility? |
It should have the same amount of physical access restrictions as the primary processing site. |
|
What would best help an organization to gain a common understanding of functions that are critical to its survival? |
A business impact analysis |
|
The first step in the implementation of the contingency plan is to perform _________________. |
A data backup |
|
For which areas of the enterprise are business continuity plans required? |
All areas of the enterprise. |