Chapter 4 - Business Continuity And Disaster Recovery Planning

Front 1

What is a disaster?

Back 1

Any natural or man-made event that disrupts the operations of a business in such a significant way that a considerable and coordinated effort is required to achieve recovery.

Front 2

Name 4 types of natural disasters.

Back 2

1. Geological
2. Meteorological
3. Health
4. Other (fires, floods, solar storms)

Front 3

Name 4 types of man-made disasters.

Back 3

1. Labor
2. Social-political
3. Material
4. Utilities

Front 4

What does CIA stand for?

Back 4

Confidentiality

Integrity

Availability

Front 5

How do BCP and DRP support the security pillars?

Back 5

BCP and DRP directly support availability.

Front 6

What is BCP?

Back 6

* activities required to ensure the continuation of critical business processes in an organization
* alternate personnel, equipment, and facilities

Front 7

What is DRP?

Back 7

* Assessment, salvage, repair, and eventual restoration of damaged facilities and systems.

Front 8

What are the 6 industry standards supporting BCP and DRP?

Back 8

1. ISO17799
2. BS25999
3. NIST 800-34
4. NFPA 1600
5. NFPA 1620
6. HIPAA

Front 9

What are the 5 benefits of BCP and DRP planning?

Back 9

1. Reduced risk
2. Process improvements
3. Improved organizational maturity
4. Improved availability and reliability
5. Marketplace advantage

Front 10

What does BIA stand for?

Back 10

Business Impact Assessment

Front 11

What are the key metrics used to measure business impact during a BIA? (3)

Back 11

* Maximum tolerable downtime
* Recovery time objective
* Recovery point objective

Front 12

What does MTD stand for?

Back 12

Maximum Tolerable Downtime

Front 13

What are 3 metrics used to develop statements of impact?

Back 13

* Cost to operate the process
* Cost of process downtime
* Profit derived from the process

Front 14

What does RTO stand for?

Back 14

Recovery time objective.

Front 15

What is RTO?

Back 15

Period of time from disaster onset to resumption of business processes.

Front 16

What is RPO?

Back 16

Maximum period of data loss from onset of disaster counting backwards.

Front 17

What does RPO stand for?

Back 17

Recovery point objective.

Front 18

What are the 5 parts of Emergency Response?

Back 18

1. Personnel safety
2. Evacuation
3. Asset protection
4. Damage assessment
5. Emergency notification

Front 19

What are the 5 levels of testing business continuity and disaster recovery plans?

Back 19

1. Document review
2. Walkthrough
3. Simulation
4. Parallel test
5. Cutover test

Front 20

What is document review?

Back 20

* Review of recovery, operations, resumption plans and procedures.
* Performed by individuals.
* Provide feedback to document owners
* Least impact, lowest risk, least benefit.

Front 21

What is a walkthrough?

Back 21

* Group discussion of recovery, operations, resumption plans and procedures.
* Performed by teams.
* Brainstorming and discussion brings out new issues, ideas.
* Provide feedback to document owners
* Low impact, lowest risk, moderate benefit

Front 22

What is simulation?

Back 22

* Walkthrough of recovery, operations, resumption plans and procedures in a scripted "case study" or "scenario".
* Performed by teams.
* Places participants in a mental disaster setting that helps them discern real issues more easily.
* Low impact, low risk, moderate benefit

Front 23

What is parallel test?

Back 23

* Full or partial workload is applied to recovery systems.
* Performed by teams.
* Tests actual system readiness and accuracy of procedures
* Production systems continue to operate and support actual business processes
* Moderate impact, low risk, moderate benefit.

Front 24

What is a cutover test?

Back 24

* Production systems are shut down or disconnected; recovery systems assume full actual workload.
* Performed by teams.

Front 25

BCP is concerned with _______________ of processes.

Back 25

continuation

Front 26

DRP is concerned with __________ of facilities.

Back 26

recovery.

Front 27

What are the benefits of BCP and DRP?

Back 27

* process improvement
* reduced risk
* market advantage

Front 28

What are the 4 components of BIA?

Back 28

1. Inventory processes
2. Perform risk and threat management
3. Assign recovery targets
4. Perform criticality assessment

Front 29

What are the 6 components of a DRP and BCP plan?

Back 29

1. Emergency response
2. Damage assessment and salvage
3. Communications
4. Personnel evacuation and safety
5. Restoration and recovery
6. Business resumption

Front 30

Which recovery plan test results would be most useful to management?

Back 30

list of successful and unsuccessful activities.

Front 31

What is the most important consideration in locating an alternate computing facility during the development of a disaster recovery plan?

Back 31

It is unlikely to be affected by the same disaster.

Front 32

_________________ is defined as the most recent point in time to which data must be synchronized without adversely affecting the organization (financial or operational impacts)?

Back 32

RPO (Recovery Point Objective)

Front 33

If your property Insurance has Actual Cash Valuation (ACV) clause, your damaged property will be compensated based on ___________________________.

Back 33

Value of item on the date of loss

Front 34

Business Continuity and Disaster Recovery Planning (Primarily) addresses the __________________ of the CIA triad.

Back 34

Availability of the CIA triad

Front 35

Notifying the appropriate parties to take action in order to determine the extent of the severity of an incident and to remediate the incident's effects is part of:___________________.

Back 35

Incident Response.

Front 36

A server farm consisting of multiple similar servers seen as a single IP address from users interacting with the group of servers is an example of _________________________

Back 36

Server clustering.

Front 37

When preparing a business continuity plan, who of the following is responsible for identifying and prioritizing time-critical systems?

Back 37

Senior business unit management

Front 38

How often should tests and disaster recovery drills be performed?

Back 38

At least once a year

Front 39

Mark's manager has tasked him with researching an intrusion detection system for a new dispatching center. Mark identifies the top five products and compares their ratings. Which of the following is the evaluation criteria most in use today for these types of purposes?

Back 39

Common Criteria.

Front 40

Who should direct short-term recovery actions immediately following a disaster?

Back 40

Disaster Recovery Manager.

Front 41

If your property Insurance has Actual Cash Valuation (ACV) clause, your damaged property will be compensated based on _____________________________________.

Back 41

Value of item on the date of loss

Front 42

Which backup method makes a complete backup of every file on the server every time it is run?

Back 42

full backup method.

Front 43

During the testing of the business continuity plan (BCP), which method of results analysis provides the BEST assurance that the plan is workable?

Back 43

Quantitatively measuring the results of the test

Front 44

What is true regarding an off-site information processing facility?

Back 44

It should have the same amount of physical access restrictions as the primary processing site.

Front 45

What would best help an organization to gain a common understanding of functions that are critical to its survival?

Back 45

A business impact analysis

Front 46

The first step in the implementation of the contingency plan is to perform _________________.

Back 46

A data backup

Front 47

For which areas of the enterprise are business continuity plans required?

Back 47

All areas of the enterprise.