Chapter 19: Business Continuity, Disaster Recovery, and Organizational Policies Review Quiz
Which of the following is the name for a partially configured environment that has the peripherals and the software that the normal processing facility contains and that can be operational within a few days? -Hot site -Warm site -Online storage system -Backup storage facility
Answer = Warm site
To ensure that critical systems are not lost during a failure, it is important that which of the following be true? -MTTF < MTTR -MTTR < RTO -RPO < MTTF -RTO = RPO
Answer = MTTR < RTO "having a RTO or RPO shorter than MTTR can result in losses"
2 Laptops are reported missing quarterly. They cost about 200. each. The ALE for laptop losses is _______. -200 -400 -800 -1600
Answer = $1600 per year. math = 2 X $200 laptops per quarter= $400 4 quarters in a year. $400 X 4 = $1600 (loss per year) aka ALE (Annual Loss Expectancy)
Management has determined that in order to avoid catastrophic losses, they cannot afford to lose more than 12 hours of data. This is called: -A RPO -A RTO -A DLP -A BIA
Answer = A RPO (Recovery Point Objective)
The easiest way to backup a VM is to perform: -A full backup -A bit-by-bit copy -A snapshot -A delta backup
Answer = A snapshot (only pertains to VMs)
A good backup plan will include which of the following? -The critical data needed for the organization to operate -Any software that is required to process the organization's data -Specific hardware to run the software or to process the data -All of the above
Answer = All of the above
Which of the following is a consideration in calculating the cost of a backup strategy? -The cost of the backup media -The storage costs for the backup media -The frequency with which backups are created -All of the above
Answer = All of the above
Why is it important that security exercises be conducted? -To provide the opportunity for all parties to practice the procedures that have been established to respond to a security incident -To determine whether the organization's plan and the individuals involved perform as they should during a simulated security incident -To determine whether processes developed to handle security incidents are sufficient for the organization -All of the above
Answer = All of the above
Which document outlines what the loss of any critical functions will mean to the organization? -BCP -DRP -BIA -SLA
Answer = BIA (Business Impact Analysis)
Which of the following is considered an issue with long-term storage of magnetic media as discussed in the chapter? -Tape media can be used a limited number of times before it degrades. -Software and hardware evolve, and the media stored may no longer be compatible with current technology -Both A and B -None of the above
Answer = Both A and B
Linking systems to have them act and work as one system is called: -A failover system -Load balancing -Clustering -An SLA
Answer = Clustering
Multi-national companies or companies that use cloud backup solutions must take into account this issue: -Offsite backup -Data sovereignty -Backup time -RPO
Answer = Data sovereignty
Which backup requires a small amount of space and is considered to have a complex restoration process? -Partial -Differential -Incremental -Delta
Answer = Delta
In which backup strategy are only those portions of the files and software that have changed since the last backup backed up? -Full -Differential -Incremental -Delta
Answer = Differential This question is a stupid one, as there are two possible answers. incremental or differential
Which plan defines the data and resources necessary and the steps required to restore critical organizational processes? -Succession Plan -Business Impact Analysis (BIA) -Business Continuity Plan (BCP) -Disaster Recovery Plan (DRP)
Answer = Disaster Recovery Plan (DRP)
A Business Impact Assessment (BIA) is conducted to: -Outline the order in which critical functions should be returned to service to maintain business operations -Identify the most critical functions for an organization -Identify the critical employees who must be onsite to implement the BCP -Establish the policies governing the organization's backup policy
Answer = Establish the policies governing the organization's backup policy
______ is the process of moving from a normal operational to the continuity of operations is known as: -Fall over -Disaster planning -Failover -Hot sites
Answer = Failover
Backups are necessary to prevent a security incident from occurring. -True -False
Answer = False
The Archive Bit is cleared in a Differential Backup -True -False
Answer = False an incremental backup resets the archive bit.
RAID increases reliability through performance metrics. -True -False
Answer = False RAID is used to created redundancy (prevent data loss)
Management is concerned about a possible outage in a specialized hardware component, especially if that part fails. What metric would be of high interest in this situation? -RPO -RTO -MTTF -RAID
Answer = MTTF (Mean Time To Failure)
Which term refers to the predicted average time that will elapse before failure (or between failures) of a system? -Mean Time To Restore -Mean Time To Recovery -Mean Time To Failure -Recovery Point Objective
Answer = Mean Time To Failure (MTTF)
Which type of alternative site generally use trailers, often rely on generators for their power but also factor in the requirement for environmental controls immediately? -Shared alternative site -Mobile backup site -Incremental site -Reciprocal site
Answer = Mobile backup site
Which RAID configuration, known as mirrored disks, copies the data from one disk onto two or more disks? -RAID 0 -RAID 1 -RAID 4 -RAID 5
Answer = RAID 1
Which RAID configuration, known as block-stripped with error check, is a commonly used method that stripes the data at the block level and spreads the parity across all of the drives? -RAID 0 -RAID 1 -RAID 2 -RAID 5
Answer = RAID 5 RAID 0 = striped disks RAID 1 = mirroring RAID 2 = bit level error correcting code RAID 3 = byte level stripped with error check uses one drive for parity RAID 4 = dedicated parity drive similar to raid 3 RAID 5 = Block level striped with error check
Which should be avoided if possible? -Redundant controls -Single point of failure -Clustering -High availability
Answer = Single point of failure single point of failure is never good.
For organizations that draw a distinction between BCP and a DRP, which of the following is true? -The BCP details the functions that are most critical and outlines the order in which the critical functions should be returned to service to maintain business operations. -The BCP is a subset of DRP -The DRP outlines the minimum set of business functions required for the organization to continue functioning. -The DRP is always developed first and the BCP normally is an attachment to this document
Answer = The BCP details the functions that are most critical and outlines the order in which the critical functions should be returned to service to maintain business operations.
What common utility or infrastructure is important to consider when developing your recovery plans? -Transportation -Oil and Gas -Communications -Television/Cable
Answer = Transportation again a vague, wrongly worded question. you need communication in order to be able to connect your network and transfer data. but I know its referring to the distance in the offsite backup.
You are unable to fully test a possible disaster, so walking through the procedure with other management and operational people is called a tabletop exercise: -True -False
Answer = True
Which alternative site is designed to be operational within a few days? -Warm site -Hot site -Reciprocal site -Cold site
Answer = Warm site
