Deck 2 Flashcards
(14 cards)
If an energy company (with cyclical demand) rents servers, storage and firewalls from a cloud service provider who needs flexibility of scaling usage up or down will use_____
IAAS - THIS TYPE OF CSP DOES NOT PROVIDE SUPPORT BEYOND VIRTUAL INFRASTRUCTURE BUT MAINTAINS FLEXIBILITY OF SCALING USAGE UP OR DOWN.
Which service allows users to develop and maintain their own application but generally not operating systems ?
PAAS
Which service providers manage much more on the range of offerings than other CSPs ?
SAAS
Which step in business impact analysis (BIA) does MTD, MTTR occur?
STEP 5 - ESTABLISH RECOVERY PRIORITIES
BIA STEPS - 1.ESTABLISH BIA APPROACH 2. IDENTIFY CRITICAL RESOURCES 3. DEFINE DISRUPTION IMPACT 4. ESTIMATE LOSSES 5. ESTABLISH RECOVERY PRIORITIES 6. CREATE THE BIA REPORT 7.IMPLEMENT BIA RECOMMENDATIONS.
Which step in business impact analysis (BIA) does ARO and ALE occur?
STEP 4 - ESTIMATE LOSSES
Between a service org, service auditor, user auditor who is responsible for presenting the description of tests of controls and results?
SERVICE AUDITOR
If a company wants to build its own application while delegating responsibilities for managing infrastructure, operating system and development of environment to a cloud service provider then which model to choose?
PAAS
When CSP supplies infrastructure capabilities while company manages its applications and operating system___
IAAS
When CSP manages application deployment, maintenance, configuration and underlying IT support____
SAAS
In NIST Privacy Framework Core functions, ____ function has five categories including data protection policies, processes and procedures, identity management, authentication, access control, data security?
PROTECT FUNCTION.
Which IT component sends and receives data packets ?
ROUTER
Which metric system is used for maximum amount of some metric that is defined as intolerable (and can be measured in some quantitative measure)?
RPO - RECOVERY POINT OBJECTIVE
