13 Business Continiuity – Flashcards
Unlock all answers in this set
Unlock answersquestion
Business Continiuty
answer
The ability of an organization to maintain its operations and services in the face of a disruptive event.
question
Business continuity planning and testing
answer
The process of identifying exposure to threats, creating preventive and recovery procedures, and then testing them to determine if they are sufficient.
question
Business impact analysis BIA
answer
BIA. An analysis that identifies mission critical business functions and quantifies the impact a loss of such functions may have on the organization in terms of its operational and financial position.
question
Chain of custody
answer
A process of documentation that shows that the evidence was under strict control at all times and no unauthorized individuals were given the opportunity to corrupt the evidence.
question
clustering
answer
combining two or more servers to appear as one single unit.
question
cold site
answer
A remote site that provides office space; the customer must provide and install all the equipment needed to continue operations.
question
computer forensics
answer
Using technology to search for computer evidence of a crime.
question
Continuity of operations,
answer
The ability of a business to continue to function in the event of a disaster.
question
Data backup
answer
The process of copying information to a different medium and storing it preferably at an offsite locatoin, so that it can be used in the event of a disaster.
question
Disaster recovery plan DRP
answer
A written document that details the process for restoring IT resources following an event that causes a significant disruption services.
question
Faraday Cage
answer
A metallic enclosure that prevents the entry or escape of an electromagnetic field
question
Forensics forensic science
answer
The application of science to questions that are of interest to the legal profession
question
Heating, Ventilation, and air conditioning HVAC
answer
Systems that provide and regulate heating and cooling.
question
High availability
answer
A system that can function for an extended period of time with little downtime.
question
hot aisle/cold aisle
answer
A layout in a data center that can be used to reduce heat by managing air flow.
question
hot site
answer
A duplicate of the production site that has all the equipment needed for an organization to continue running including office space and furniture telephone jacks, computer equipment and live telecommunications link.
question
IT contingency Planing
answer
The process of developing an outline of procedures to be followed in the event of a major IT incident or an incident that directly impacts IT
question
Mean time between failures MTBF
answer
A statistical value that is the average time until a component fails, cannot be repaired and must be replaced
question
mean time to recovery MTTR
answer
The average time for a device to recover from a failure that is not a terminal failure.
question
order volatility
answer
The sequence of volatile data that must be preserved in a computer forensic investigation
question
RAID Redundant Array of Independent Drives
answer
A technology that uses multiple hard disk drives for increased reliability and performance
question
Recovery point object RPO
answer
The maximum length of time that an organization can tolerate between backups.
question
Recovery time Objective RTO
answer
The length of time it will take to recover data that has been backed up
question
risk assessment
answer
The process of identifying threats.
question
single point of failure
answer
A component or entity in a system which, if it no longer functions would adversely affect the entire system.
question
Succession Planning
answer
Determining in advance who will be authorized to take over in the event of the incapacitation or death of key employees
question
System image
answer
A snapshot of the current state of the computer that contains all settings and data
question
Tabletop exercises
answer
Exercises that simulate an emergency situation but in an informal and stress-free environment
question
Warm site
answer
A remote site that contains computer equipment but does not have active internet or telecommunication facilities and does not have backups of data.
question
Blank____is the process of developing an outline of procedures to be followed in the event of a major IT incident or an incident that directly impacts IT
answer
IT contingency planning
question
Who should be involved in a tabletop exercises?
answer
Individuals on a decision making level
question
The average amount of time that it will take a device to recover from a failure that is not a terminal failure is called the ______Blank.
answer
mean time to recovery MTTR
question
Each of these is a category of fire suppression systems
answer
Water Sprinkler system, Dry chemical system, clean agent
question
Which of these is are required for fire to occur
answer
Oxygen, heat, fuel, chemical reaction
question
An electrical fire like that which would be found in a computer data center is known as what type of fire?
answer
Class C
question
Which level of RAID uses disk mirroring and is considered fault-tolerant?
answer
Raid Level 1
question
A standby server that exists only to take over for another server in the event of its failure is known as an_______blank
answer
Assymetrical Server cluster
question
What does the abbreviation RAID represent?
answer
RAID Redundant Array of Independent Drives
question
Which of these is an example of a nested RAID?
answer
level 0+1
question
An ____blank___ is always running off its battery while the main power runs the battery charger
answer
On-line UPS
question
Which type of site is essentially a duplicate of the production site and ahs all the equipment needed for an organization to continue running?
answer
hot site
question
Which of these are characteristics of a Disaster Recovery plan DRP?
answer
Updated regularly it is written it is detailed.
question
What does an incremental backup do?
answer
backs up any data that has changed since last full backup or last incremental
question
these questions are basic question to be asked regarding creating a data backup?
answer
What media should I use? Where should the backup be stored? what information should be backed up?
question
The chain of __blank____ documents that the evidence was under strict control at all times and no unauthorized person was given the opportunity to corrupt the evidence
answer
Chain of custody
question
What is the maximum length of time that an organization can tolerate between data backups?
answer
Recovery point object RPO
question
What data backup solution uses the magnetic disk as a temporary storage area?
answer
D2D2T Disc to disc to tape
question
When an unauthorized event occurs, what is the first duty of the computer forensics response team?
answer
Secure the crime scene
question
Contingency
answer
A futere event or circumstance that may possibly occur but cannot be predicted
question
Most Disaster Recovery Plans DRPs have
answer
Purpose and scope. Recovery Team Preparing for disaster Emergency Procedures. Restoration Procedures
question
Purpose and scope.
answer
Reason for the plan and what it encompasses. Intro. Objectives and constraints. Assumptions Incidents requiring action Contingencies Physical safeguards. Types of computer service disruption Insurance consideration
question
Recovery Team
answer
Organization for the disaster team Disaster team headquarters. disaster recovery coordinator recovery team leaders and responsibilities
question
Preparing for disaster
answer
Physical security risks. Environmental risks. Internal Risks. External Risks. Safeguards
question
Emergency Procedures.
answer
Disaster recovery team formation Vendor contact list. Use of alternate sites. Offsite storage
question
Restoration Procedures
answer
Central facilities recovery plan. Systems and operations. scope of limited operations at central site. Network communications Computer recovery plan
question
SLA service level agreement
answer
A service contract between a vendor and a client that specifies what service will be provided, responsibilities and guarantees.
question
Private cluster
answer
This is a server cluster so that they can share data.
question
Public cluster
answer
This allows the user to see the server as one
question
Two types of server clusters
answer
Asymmetric and Symmetric
question
Asymmetric cluster
answer
This is when a server has a second to take over only if the first fails, it acts only as a backup. for high read and write actions
question
symmetric cluster
answer
Every server in the cluster provides useful work. Symmetric is more cost effective
question
RAID level 0
answer
Striped disk array without fault tolerance. most common level
question
RAID level 1
answer
Mirroring. copies everything to other drives incase primary fails. another mirroring option is disk duplexing where it instead has separate cards for each disk.
question
RAID level 5
answer
Independent disks with distributed parity. distributes parity or error checking data across drives. while data is always stored on one drive. Most versatile RAID
question
RAID level 0+1
answer
high data transfer. it acts as a mirrored array whose segments are RAID 0 arrays. nested level RAID
question
UPS uninterruptible power supply
answer
Device that maintains power to equipment in case of interruption. can communicate with network admin computer. or page network manager. Prevent users from logging in. disconnect users and shut down. notify users to shutdown.
question
Off-line UPS
answer
least expensive and simplest solution. If power goes off begins supplying power from battery.
question
On-line UPS
answer
always running the system and being charged by the power. also acts as surge protector
question
archive bit
answer
a setting used by software to designate which files have been backed up.
question
Full backup
answer
Starts at point for all to backup
question
Differential backup
answer
Backs up any data that has changed since last full backup
question
Incremental Backup
answer
backs up any data that has changed since last full backup or last incremental
question
D2D
answer
disc to disc better than magnetic tape.
question
D2D2T disk to disk to tape
answer
this uses magnetic strip for temporary storage then writes to disk. has excellent RTO
question
Continuous data protection CDP
answer
continuous backups that can be restored immediately. great RPO.
question
Continuous data protection CDP types
answer
Back-level all data receives protection, file-level selected file protection, application level individual apps protection.
question
For fire to occur these 4 must be present
answer
Fuel, Oxygen, heat, chemical reaction which is the fire itself
question
Fire Types
answer
A, B, C, D, K
question
Class A
answer
Common combustibles
question
Class B
answer
combustible liquids
question
Class C
answer
Electrical
question
Class D
answer
Combustible metals
question
Class K
answer
cooking oils
question
Dry chemical
answer
Dry powder that is sprayed. Industrial
question
Water Sprinkler
answer
Wet pipe, alternate, dry pipe, pre-action
question
Wet pipe
answer
Water under pressure used in pipes, needs no risk of freezing
question
alternate
answer
pipes filled with water or compressed air
question
dry pipe
answer
pipes with pressurized water. When water over head is risk
question
pre-action
answer
like dry pipe but requires preliminary alarm.
question
Clean Agent System
answer
Low pressure CO 2, high pressure CO2, FM 200, inergent system, FE-13
question
Low pressure CO 2
answer
Chilled CO2 becomes vapor. high voltage areas
question
high pressure CO2,
answer
like low pressure but used for small localization applications
question
FM 200
answer
Absorbs heat energy from surface of burning material. One of least toxic vapors computer rooms, vaults, phone rooms, mechanical rooms, museums, and other areas with people
question
inergent system
answer
mix of nitrogen, argon, and CO2. used for sensitive areas like control rooms, telecommunications
question
FE-13
answer
Developed initially as refridgerant. works like FM-200. safer and more desirable with people around.
question
Amount of digital evidence
answer
according to FBI 85 percent of crimes leave digital evidence retrieved through computer Forensics
question
Increased Scrutiny by legal profession
answer
Attorneys and judges no longer accept computer evidence.
question
Coputer forensics teams are
answer
first responders
question
Volatility sequence
answer
First, register, cache, peripheral. Second RAM third network state, fourth running processes
question
Mirror Image backup
answer
aka bit stream backup. replicates all sectors of the computer. use of hashes on snapshot
question
Slack
answer
One source of hidden data usually RAM. RAM slack is where a cluster is not long enough to fill up its last sector, padding occurs. This is RAM slack. While RAM slack is for last sector if additional sectors are used its a File slack or drive slack
question
Metadata
answer
data about data. file type, creation date, authorship, edict history.
question
incident response procedures
answer
Preparation, Execution, analysis
question
Archive bit
answer
1 is not backed up 0 is backed up
question
How would an administrator provide hardware, data, and application redundancy with minimal downtime and without the use of a hot site?
answer
VM restoration to the cloud
