nature of disaster

Understand system resilience, high availability and fault tolerance

recovery strategy

Recovery plan development

Testing and Maintenance

Summarize

Learn about common natural disasters that can threaten your organization. These include earthquakes, floods, storms, fires, tsunamis and volcanic eruptions.

Learn about common man-made disasters that can threaten your organization. Including explosions, electrical fires, acts of terrorism, power outages, others

Utility failure, infrastructure failure, hardware/software failure, strikes, theft and vandalism.

Learn about common recovery facilities. Common recovery facilities include cold sites, warm sites, hot sites, mobile sites, and multi-sites. The pros and cons of each facility must be understood.

Explain the potential advantages of mutual assistance agreements and the reasons why they are not commonly implemented in business today. While Mutual Assistance Agreements (MAAs) provide relatively inexpensive backup sites for disaster recovery, they are not commonly used because they are not enforceable. Organizations participating in MAAs may be forced to close due to the same disaster, and MAAs also raise confidentiality issues.

Understand database backup technology. Databases benefit from three backup technologies. Electronic links are used to transfer database backups to remote sites as part of a bulk transfer. Remote log processing is used for more frequent data transfers. With remote mirroring technology, database transactions can be backed up to the site mirror in real time.

Explain common procedures used in disaster recovery planning. These plans should take a comprehensive planning approach that should include considerations such as initial response efforts, relevant personnel, communication among team members and their communication with internal and external entities, response effort evaluation, and service restoration. The disaster recovery plan should also include training and awareness-building efforts to ensure personnel understand their responsibilities and lessons learned so that the plan can be continuously improved.

Learn about the 5 types of disaster recovery plan testing and the impact each test has on normal business operations. The 5 types are: read-through testing, structured walkthrough, simulation testing, parallel testing, and complete interruption testing. A read-through test is an entirely paper exercise, whereas a structured exercise involves a project team meeting, neither of which impacts business operations. Mock testing may halt non-critical operations. Parallel testing involves redeploying personnel but does not impact day-to-day operations. A complete outage test involves shutting down major systems and moving work to a recovery facility.

1 James is working with organizational leadership to help them understand the role disaster recovery plays in their cybersecurity strategy. Leaders don’t understand the difference between disaster recovery and business continuity issues. What is the ultimate goal of a disaster recovery plan? A. Prevent business interruption B. Temporary resumption of business operations C. Resumption of normal business activities D. Minimize the impact of disasters

2. Kevin is trying to determine the appropriate backup frequency for the organization's database servers to ensure that any data loss is within the organization's risk appetite. Which of the following security process indicators would best help him accomplish this task? A. RTO B.MTD C. RPO D.MTBF

3. Brian's organization recently suffered a disaster and wanted to improve their disaster recovery plan based on their experience. Which of the following activities would be most helpful in accomplishing this task? A. Training plan B. Awareness Cultivation C. BIA Review D. Summarize experiences and lessons

4 Adam was working on fault-tolerance controls used by an organization when he realized that there was a single point of failure in a hard drive used to support critical servers. Which of the following controls provides fault tolerance for these disks? A. Load balancing B. RAID C. Cluster D.HA pair

5. Brad is designing a disaster recovery strategy for the organization and analyzing possible storage locations for backup data. He was unsure where the organization would resume operations in the event of a disaster and wanted an option that gave them the flexibility to easily recover data from any disaster recovery site. Which of the following storage locations is Brad's best choice? A. Primary data center B. Field Offices C. Cloud computing D. IT manager’s home

6. Which of the following statements are true regarding business continuity plans and disaster recovery plans? (Select all that apply.) A. The focus of a business continuity plan is to maintain uninterrupted business functions in the event of a disaster. B. Organizations can choose whether to develop a business continuity plan or a disaster recovery plan. C. Business continuity planning picks up where disaster recovery planning leaves off. D. A disaster recovery plan guides the organization in restoring normal operations at major facilities.

7.Tonya is reviewing the flood risk to her organization and learns that her primary data center is located in a 100-year floodplain. What conclusion can she draw from this information? A. The last flood of any kind to hit this area was 100 years ago B. The probability of flooding at this level in any year is 1/100 C. The area is not expected to flood for at least 100 years D. The last time the area was hit by a serious flood was 100 years ago

8. Randi is designing a disaster recovery mechanism for the organization's business-critical databases. She chose a strategy of maintaining an accurate, up-to-date copy of the database at another location. What terminology describes this approach? A. Transaction records B. Remote logging C. Electronic link D.Remote mirroring

9. Bryn runs a company website and currently uses a one-stop server that can handle the full load of the website. However, she was concerned that an outage to that server could cause the organization to exceed its RTO. What actions could she take to better protect against this risk? A. Install dual power supplies in the server. B. Replace the server's hard drive with a RAID array. C. Deploy multiple servers behind a load balancer. D. Regularly copy the server.

10 Carl recently completed the company's annual business continuity plan update and now turns his attention to disaster recovery planning. What outputs from the business continuity plan can be used to prepare the business unit priority tasks of the disaster recovery plan? A. vulnerability analysis B.Business Impact Analysis C.Risk management D.Continuity planning

11: Nolan is considering several different types of application-specific processing solutions for his organization's data center. Which of the following alternative processing sites would take the longest to activate but be the least expensive to implement? A. Hot site B. Mobile site C. Cold site D. Warm site

12. Ingrid is concerned that her organization's data center has experienced a series of transient power outages. Which of the following controls best maintains its operating condition? A.Generator B. Dual power supply C.UPS D. Redundant network links

13. Which of the following is a characteristic of a hot site rather than a warm site? A. Communication lines B. Workstation C. Server D.Current data

14. Harry is conducting disaster recovery testing. He moved a group of people to a secondary recovery site, where they mimicked the operations of the primary site but did not assume operational responsibilities. What type of disaster recovery testing is he performing? A. Checklist Testing B. Structured Exercises C.Simulation test D. Parallel testing

15. What type of documentation would assist public relations professionals and others who need high-profile disaster recovery efforts? A. Executive Summary B.Technical guidance C. Specific department plans D. Checklist

16. What planning tools can prevent companies from breaking the news by providing important software for their products? A. Differential backup B.Business Impact Analysis C. Increase each portion D. Software hosting agreement

17. What type of backup always stores a copy of all files that have been modified since the most recent full backup? A. Differential backup B. Partial backup C. Incremental backup D. Database backup

18. You operate a grain processing business and are developing your recovery priorities. Which of the following systems might have the highest priority? A. Order processing system B. Fire extinguishing system C. Salary system D.Website

19.What kind of backup combination strategy has the fastest backup and restore speed? A. Full backup and differential backup B. Partial backup and incremental backup C. Full backup and incremental backup D. Incremental backup and differential backup

20. What type of disaster recovery plan testing adequately evaluates operations at a backup facility but does not transfer primary operational responsibility from the primary site business? A. Structured drills B. Parallel testing C. Completely interrupt the test D.Simulation test