CASP lesson 3 Flashcards
(37 cards)
BCDR
Business Continuity and Disaster Recovery
What is essential for the ongoing upkeep of BCDR plans?
Senior leadership participation and oversight
An information-system focused plan and identifies the following required steps for
effective continuity planning
The National Institute of Standards and Technology (NIST) Special Publication (SP)
800-34 Rev-1 “Contingency Planning Guide for Federal Information Systems”
The National Institute of Standards and Technology (NIST) Special Publication (SP)
800-34 Rev-1 “Contingency Planning Guide for Federal Information Systems” steps for effective continuity planning; i.e, Business Continuity Planning (BCP)
- Develop the continuity planning policy statement.
- Conduct the business impact analysis.
- Identify preventive measures.
- Create contingency strategies.
- Develop an information system contingency plan.
- Ensure plan testing, training, and exercises.
- Ensure plan maintenance.
What are focused on the immediate needs of a disaster, when things are their most frantic and pressing, and is focused on the
tasks required to bring critical systems back online.
Disaster Recovery Plans
__________________have a broad scope and cover the range of activities
from the development of a business continuity policy through the creation of the
response plans, evaluation activities, and plan maintenance.
Busines continuity plans
The collaborative effort to identify those
systems and software that perform essential functions, meaning the organization
cannot run without them.
Business impact analysis
What is the collaborative effort to identify those
systems and software that perform essential functions, meaning the organization
cannot run without them?
Business Impact Analysis (BIA)
The first step in the development of the BIA
to identify the information systems
and the various elements that are part of it.
Goal of BIA
To assess importance of various elements nd their impact so
that recovery efforts can be prioritized
Measuring Recovery Effectiveness
It is not enough to simply bring systems online; how quickly and in what state need
to be defined as well.
Recovery Point Objective (RPO)
The recovery point objective defines the amount of data that can be lost without
irreparable harm to the operation of the business.
Recovery Time Objective (RTO)
This metric defines the maximum amount of time that performing a recovery can
take. It defines the amount of system downtime the organization can withstand.
Recovery Point and Recovery Time Objectives
It is possible to meet the recovery point objective, by successfully bringing systems back
online within the defined timespan, but fail the recovery time objective by recovering
those systems from backups that do not contain data within the recovery point objective.
For example, employees could successfully access the restored system but identify that
too much data is missing.
Recovery Service Level
It is important to consider that only portions of a complete system may be critical,
and this should be reflected in the recovery plans.
Explain Privacy Impact Assessment
A privacy impact assessment is conducted by an organization in order for it
to determine where privacy data is stored and how that privacy data moves
throughout an information system.
NIST defines this as “An analysis of an information system’s
requirements, functions, and interdependencies used to characterize
system contingency requirements and priorities in the event of a
significant disruption.”
Business Impact Analysis (BIA)
Which type of assessment seeks to identify specific types of sensitive
data so that its use and handling can be properly disclosed?
Privacy Impact Assessment
Cold Site
one that requires the least amount of maintenance.
warm site
site includes a datacenter
that is typically scaled-down from the primary site to include the capacity and
throughput needed to run critical systems and software. In addition, systems are
pre-configured and mostly ready to operate when needed although a measured
amount of re-configuration and preparation is needed in order for them to be
ready to operate in place of the primary site. expensive to operate
and complicated to maintain but the benefits are realized upon activation which can
take hours to perhaps a few days to accomplish.
Hot Site
site is one that can
be activated and used within minutes. To be able to implement a DR site that can
operate in this way takes very specialized knowledge, sophisticated automation
capabilities, and platforms that are specifically designed to operate in this manner,
which is not common.
Mobile site
site can be described as a data center in a box, albeit a large box!
Mobile site
site can be described as a data center in a box, albeit a large box!
Leveraging Cloud for DR Capacity
the capability to run a legacy on-premise solution in
the cloud is still feasible. To this end, many organizations make the decision to use
public cloud services as a DR site and this approach is often referred to as DR as a
service, or DRaaS. The cloud service is configured in much the same way as a warm
site, with systems pre-configured and/or data replicated to the cloud platform
in near real-time. If a disaster were to occur, the organization’s services would be activated on the cloud platform for the duration necessary until they can be
transitioned back to the primary site.
