CISSP (Domain 8 - Business Continuity and Disaster Recover Planning) Flashcards Preview

CISSP > CISSP (Domain 8 - Business Continuity and Disaster Recover Planning) > Flashcards

Flashcards in CISSP (Domain 8 - Business Continuity and Disaster Recover Planning) Deck (40)
Loading flashcards...
1
Q

Business Continuity Planning (BCP)

A
  • Short-term
  • project scope, planning, business impact analysis, recovery strategy, recovery plan development, implementation
  • put in place for business to funcation
2
Q

Disaster Recovery Planning (DRP)

A
  • Long-term

- recovery plan development, implementation, restoration

3
Q

NIST 800-34

A

Business Continuity Standard

4
Q

Business Continuity Planning (BCP) - Senior Management Responsibilities (7 Things)

A
  • Support and finalize plans
  • Setting the business continuity policy
  • Prioritizing critical business functions
  • Allocating sufficient resources and personnel
  • Providing oversight for and approving the BCP
  • Directing and reviewing test results
  • Ensuring maintenance of a current plan
5
Q

Business Continuity Planning (BCP) - Senior

Functional Management Responsibilities (5 Things)

A
  • Develop and document maintenance and testing strategy
  • Identify and prioritize mission-critical systems
  • Monitor progress of plan development and execution
  • Ensure period tests
  • Create the various teams necessary to execute the plans

*Department Head

6
Q

Business Continuity Planning (BCP) - Committee

A
  • Execute the BIA
  • Coordinate with department representatives
  • Develop analysis group
  • Findings are input to BR/DR
7
Q

Business Continuity Planning (BCP) - Rescue Team

A

Deals with the immediacy of disaster

  • Employee evacuation
  • Crashing the server room
8
Q

Business Continuity Planning (BCP) - Recovery Team

A

Gets the alternative facility up and running

9
Q

Business Continuity Planning (BCP) - Salvage Team

A

Return of operations to the original or permanent facility

10
Q

7 Phases of a Business Continuity Planning (BCP)

A
  • Project initiation
  • Business impact analysis
  • Risk analysis
  • Risk mitigation
  • Implementation
  • Test
  • Maintenance
11
Q

Business Impact Analysis (BIA)

A
  • See how company would be affected by different identified threats
  • Quantitative and Qualitative information gathered
  • First step in disaster recovery planning
12
Q

3 Priority Goals of Business Impact Analysis (BIA)

A
  • Prioritize critical functions
  • Determine requirements/applications which serve core business functions
  • Estimate amount of downtime company can handle
13
Q

Management Should Establish Recovery Priorities for Business Processes That Identify These 5 Things

A
  • Essential personnel
  • Technologies
  • Facilities
  • Communications systems
  • Vital records and data
14
Q

Recovery Point Objective (RPO) - BIA Key Metric

A

Maximum sustainable data loss based on backup schedules and data needs

  • Weekly, hourly, daily?
15
Q

Recovery Time Objective (RTO) - BIA Key Metric

A

Duration of time required to bring critical systems back online

  • System recovery time
16
Q

Work Recovery Time (WRT) - BIA Key Metric

A

Duration of time needed to recover lost data (Based on RPO) and to enter data resulting from work backlogs

  • Manual workload
17
Q

Maximum Tolerable Downtime (MTD) - BIA Key Metric

A

Duration of Recovery Time Objective (RTO) and Work Recovery Time (WRT)

  • Max time a business can tolerate the downtime of a particular business function
18
Q

3 Threats to Disaster Recovery and Continuity Planning

MNT

A
  • Man-made: Fires, Terrorism, Hackers, Riots
  • Natural: Tornado, Flood, Earthquake
  • Technical: Power outage, device failure, virus infection
19
Q

3 Categories of Disruptions

A
  • Non-disaster: Device malfunction, disruption of service
  • Disaster: Entire facility unusable for a day or longer
  • Catastrophe: Destroys facility
20
Q

Short-term Loss Criteria (4 Things)

A
  • loss in profits
  • Loss in productivity
  • Increase in operational expenses
  • Violations of contract agreements
21
Q

Loss Criteria

A

Once threats are identified and critical business functions are understood, a specific loss criteria must be developed

22
Q

Long-Term Loss Criteria (4 Things)

A
  • Delayed income costs
  • Loss in repudiation and public confidence
  • Loss of compensation advantages
  • Hidden Costs (Not always insurance expenses)
23
Q

Results from Business Impact Analysis (BIA) (5 Things)

A
  • Identified critical departments and required resources
  • Identified threats and risks
  • Impact company can handle dealing with each risk
  • Outage time that would not be critical
  • Recovery alternatives
  • then document for management approval and create recovery plans
24
Q

4 Disaster Recovery Plan Objectives

A
  • Protect company if parts or all of services become unusable
  • Improve responsiveness by employees in different situations
  • Guarantee reliability of standby systems
  • If employee knows what they are expected to do during disaster, management can address larger picture
25
Q

Goals Must Contain These 4 things for a Useful Disaster Recovery Plan
(RAPI)

A
  • Responsibility: Each individual involved knows what they need to do (training/drills)
  • Authority: Importation to know who is in charge
  • Priorities: Know what is critical vs. what is nice to have. Different departments need different items
  • Implementation and Testing: Plan put into action
26
Q

Number 1 Priority in Disaster Recovery

A

Safety of People

27
Q

2 Priorities in Disaster Recovery Planning Testing

A
  • Protect company as a whole

- Minimize property damage

28
Q

Written Recovery Plan Should Include - Disaster Recovery Plan (10 Things)

A
  • Activation criteria and Procedure
  • People: operations, technical, business requirements
  • Facility issues: main facility and backup sites
  • Utilities: power, telecommunications
  • Hardware: servers, workstations
  • Vendor assistance and service providers
  • Software: operating systems, applications, data
  • Supplies: hvac, ups, office supplies
  • Recovery and emergency procedures
  • Critical documentation and/or records
29
Q

Activation Criteria Based On (3 Things)

A
  • Extent of damage (physical, cost, operational)
  • Criticality of the system to the organization
  • Expected Duration Longer Than RTO
30
Q

3 Phases Following a Disruption

NA/RP/R

A
  • Notification/Activation: Notify personnel and perform damage assessment
  • Recovery Phase - Failover: Actions taken for recovery
  • Reconstitution - Failback: Outlines actions taken to return to normal state
31
Q

Data Recovery Options are Driven by Metrics Established In ….

A

Business Impact Analysis (BIA)

32
Q

Electronic Vaulting - Transaction Redundancy

A

Copy of modified file sent to remote location where an original backup is stored

33
Q

Remote Journaling - Transaction Redundancy

A

Moves transaction logs to a remote location, not actual files

34
Q

During Restoration of Operations What Should be Recovered First

A

Less critical departments should be returned first to test out infrastructure

35
Q

2 Things for Disaster Recovery Planning Testing

A
  • Demonstrate if a company can actually recover (set a goal)

- Performed at least once a year (point out issues, gain confidence)

36
Q

Checklist Test - DR

A

Copies of plan distributed to different departments and functional managers review

*Finds what missing

37
Q

Structured Walk-Through (Table Top) Test - DR

A

Representatives from each department go over the plan

*Gives people chance to review what they will be doing

38
Q

Simulation Test

A

Going through a disaster scenario, up to real relocation

39
Q

Parallel Test

A

Systems moved to alternate site and processing takes place there

40
Q

Full-Interruption Test

A

Original site shutdown and all processing moved to other facility