Chapter 16: disaster recovery and business continuity – Flashcards

Unlock all answers in this set

Unlock answers
question
What is business continuity plan?
answer
An important element in the security of your organization because it is a plan that helps ensure that business operations can continue when disaster strikes.
question
What is the goal of the business continuity plan ?
answer
Reduces the impact of a disaster on your organization because you are prepared for the disaster and business operations can continue.
question
Where the steps to create A business continuity plan?
answer
Project initiation Business impact assessment/business impact analysis Develop the plan Test the plan Maintain the plan
question
What is a project initiation phase do in the BCP?
answer
Involves deciding that you need a BCP plan and getting management to buy into the need for it.
question
What are some of these reasons that you would need a BCP plan?
answer
Continued business Compliance Past scenarios
question
What is required when you start a BCP plan?
answer
Upper level management approval
question
What is a BCP committee?
answer
A group of individuals from different departments within the company who are selected To represent their department and give insight to the operational requirements of that department.
question
What is the second phase in a BCP plan?
answer
The business impact assessment, which the risk assessment part of a business continued plan involves identifying critical business functions and determining the risk against those functions, and how long the company can last without those functions.
question
What are the steps to performing the business impact assessment?
answer
Identify critical business functions Identify resources used by functions Determine allowable downtime of functions Identify threats to function Determine mitigation technique
question
What is MTD
answer
Maximum allowable downtime, Which Indicates an amount of time the business can survive without that function .
question
What are man-made threats?
answer
These are threats such as fires, vandals, hackers, and even employee strikes.
question
What are some of the threats When identifying threats to a function ?
answer
Man-made threats Natural disasters Technical threats
question
What is the third phase of the BCP plan?
answer
Develop the plan, Which Includes the methods used to minimize downtime when a disaster strikes the organization. Many aspects to this plan including disaster recovery plan.
question
What is a disaster recovery plan?
answer
A step-by-step document that demonstrates the steps needed to recover systems from failure.
question
What is the fourth phase of the BCP plan?
answer
Test the plan
question
What are different types of testing For a BCP plan?
answer
Check list review Tabletop exercise/structured walk-through Simulation test Parallel test Full disruption test
question
How do you perform a check list review ?
answer
The BCP is distributed to the representative for each department to review and to verify that no major components of the BCP have been left out.
question
How do you perform A table top exercise/structured walk-through?
answer
The BCP team gets together and reviews the BCP team. With a tabletop exercise, the BCP team reviews recovery procedures that would be used in a disaster in order to identify anything missing in the plan. This also gives the team a chance to review everyone's responsibilities during a disaster
question
how do you prefer me simulation test?
answer
The BCP is put to a small test by simulating different disaster scenarios. The goal is to ensure that response time is adequate and that everyone knows what to do.
question
How do you perform a parallel test?
answer
A parallel test involves ensuring that systems can function at the alternative site and that the alternative site is actually functional
question
How do you perform a full disruption test?
answer
A full disruption test involves shutting down the original location and ensuring that the business can operates solely from the alternative site .
question
What is the last phase and ABC P plan?
answer
Maintain the plan, the key point to remember about the BCP is that it is a living document and is never complete. You need to ensure that the document is maintained on a regular basis and includes updates that reflect changes in the organization.
question
What should a disaster recovery plan included?
answer
Should include a step-by-step Instructions on how to recover each part of your information system. Also, it should include backup and restore plans, and contact information for product vendors .
question
What is one element that is always overlooked in a disaster recovery plan?
answer
An element that is always overlooked is the location of software and CD keys needed to rebuild the system.
question
What are the two types of directions that you can take with spares?
answer
Hot and cold Spares
question
What is a hot spare?
answer
A spare component that is typically connected and powered on in case the primary device should fail. When the primary device fails, for over kicks in, allowing the spare device to take over the workload immediately.
question
What is a cold spare?
answer
A device that is not powered on and is usually sitting on a shelf and a server room. A cold spare increases downtime because the device must be connected and powered up before he can take over the function of the original device. .
question
What are the different sites when planning for a disaster recovery plan?
answer
A hot site, cold site, and warm site.
question
What is a hot site?
answer
An alternative location that provides adequate space, networking hardware, and networking software Freedom and team business operations and disaster strikes. This hardware and software should include any data that would be needed by your staff in the event of a disaster, so the provider of the hotsite should ensure that data is up-to-date and that the hot seat is ready 24 seven for your organization to use.
question
What is a cold site?
answer
An alternative location where you typically have arranged to have the space available but not the networking hardware or networking software. A cold site takes time to prepare following a disaster because only the space made available
question
What is a warm site?
answer
It warms site occupies the middle ground between a hot site and a cool site. It is an interpretive location with office space and spare networking equipment such as a server and backup devices so that you can quickly restore your organization's network emergency.
question
What is an exclusive site?
answer
Ensure that the site is always available when you need it as the site has been dedicated to your company.
question
What is a timeshare site?
answer
You decide to split the cost of an attorney to site with another business, and if either company needs the site, it is there to be used. The problem with a shared alternative site is that you need to ensure that the site can handle both business and case you both need it at the same time .
question
What does succession planning meeting?
answer
The process of ensuring that you have employees within the organization can sell key leadership roles to ensure that the business can continue if you lose key personnel.
question
What is IT contingency planning?
answer
The preparation of a recovery plan for when something goes wrong with the IT systems and infrastructure
question
What does it mean time to restore mean?
answer
The average time for a system or device to recover from a failure
question
What does it mean time between failure mean?
answer
The amount of time between failures of a system or device.
question
What does it mean time to failure mean?
answer
The amount of time in device is expected to last in production before it fails.
question
What does recovery time objective mean ?
answer
A BCP term for the amount of time allowable before a business function must be restored to a functional state after failure
question
What does recovery point objective mean?
answer
ABC P term to represent how much of a system is expected to be recovered
question
What is the security consideration with tape rotation?
answer
Be sure to create a rotation cycle for your tapes so that the team tape is not being used each time.
question
What is a security consideration with tape security?
answer
Ensure that any backup operation secured with a password or encryption so that the backup cannot be restored by unauthorized individuals.
question
What is a security consideration with off-site storage?
answer
Most disaster recovery plans include a backup and restore strategy but it is also critical that you store a copy of the backups off-site in a secure location.
question
What are the three types of backups?
answer
Full backups, incremental backups, and differential backups
question
What is a full backup?
answer
Backs of every file on the specified volume or volumes.
question
What is the downfall of doing full backups?
answer
Requires a large storage capacity and a lot of time. If you have large amounts of data, running a daily for backup may not be practical because it may Take too long to perform.
question
What is an incremental backup?
answer
Accept only the files that change or that were added since the last incremental or full backup. It does this by backing up those that have the archive bit set.
question
What is a highly effective Combination when doing backups ?
answer
A combination of the full backup and incremental backup.
question
How would you restore server with full backup and incremental backup?
answer
First restore the full backup and then Every incremental backup tape made since the last full backup.
question
What are differential backups?
answer
Backups of files that change for that were added since the last full backup by looking for any files at the arcade that set.
question
What is the difference between differential backups versus incremental backups?
answer
The differential backup is different from the incremental in that the differential does not clearly archived it after the backup is done.
question
What is an important Difference between differential backups and incremental backups?
answer
Differential and incremental backups is that incremental backups take less time to back up because you are getting only changes since the last four or incremental backup but more time to restore because you are restoring multiple incremental backups. Differential backups take more time to back up but less time to restore.
question
What should a backup plan contained?
answer
It back up plan will continue listing of the data that will be backed With each backup operation along withe type of backup that occurs. Also when developing your backup plan, have a detailed plan of what resources on the server will be backed up and what they contain.Also, plan on how often these items need to be backed up.
question
What is redundant array of independent disc?
answer
RAID, a technology that did the plates data across rise so that they drive fails, the other drives and the solution can provide the data.
question
What are the different types of RAID?
answer
RAID 0 - striping or strict volumes. RAID 1- Disk mirroring RAID 5 - Stripping or striped volumes with parity.
question
What are some areas where single points of failure are found for high availability?
answer
Servers Hard drives Network equipment such as routers and switches When/Internet links Power
question
What is clustering?
answer
You install multiple servers that run the same software
question
What is network load balancing?
answer
An important technology that is designed to improve the performance of an application such as a website.
question
Where should you implement redundancy?
answer
Servers When links Power
Get an explanation on any task
Get unstuck with the help of our AI assistant in seconds
New