CH 10 Planning for Contengencies
The four components of contingency planning are the ____________________, the incident response plan, the disaster recovery plan, and the business continuity plan.
Business Impact Analysis
The bulk batch-transfer of data to an off-site facility is known as ____________________.
Electronic vaulting
In a warm site, all services and communications links are fully configured and the site can be fully functional within minutes. T.F
False
In most organizations, the COO is responsible for creating the IR plan.
False
When an incident takes place, the disaster recovery (DR) plan is invoked before the incident response (IR) plan.
False
An alert digest is a description of the incident or disaster that usually contains just enough information so that each person knows what portion of the IR or DR plan to implement without slowing down the notification process. T.F.
False
Which of the following is the best example of a rapid-onset disaster?
Flood
In which contingency plan testing strategy do individuals follow each and every IR/DR/BC procedure, including the interruption of service, restoration of data from backups, and notification of appropriate individuals?
Full Interruption
The ____________________ plan is a detailed set of processes and procedures that anticipate, detect, and mitigate the effects of an unexpected event that might compromise information resources and assets.
Incident Response Planning
Which of the following is the transfer of live transactions to an off-site facility
Remote Journaling
Patch and proceed is an organizational CP philosophy that focuses on the defense of information assets and preventing reoccurrence rather than the attacker's identification and prosecution. T.F.
True
A slow-onset disaster is a disaster that occurs over time and gradually degrade the capacity of an organization to withstand their effects. T.F.
True
Which of the following is a possible indicator of an actual incident?
Unusual consumption of computing services
Which of the following is a definite indicator of an actual incident?
Use of dormant accounts
Which of the following is a mathematical tool that can be useful in assessing relative importance while resolving the issue of what business function is the most critical?
Weighted Analysis
Discuss three of the five strategies that can be used to test contingency strategies.
1. Desk check structured 2. walk-through 3. simulation 4. parallel testing 5. full interruption
A(n) ____________________ is a document containing contact information of the individuals to notify in the event of an actual incident.
Alert Roster
