Domain 4: Information Systems Operations and Business Resilience - PART 4B

Question 1

The activation of an enterprise’s business continuity plan should be based on predetermined criteria that address the:

Answer 1

duration of the outage.

Question 2

After a disaster declaration, the media creation date at a warm recovery site is based on the:

Answer 2

recovery point objective. (RPO)

Question 3

After completing the business impact analysis, what is the NEXT step in the business continuity planning process?

Answer 3

Develop recovery strategies.

Question 4

Applying a retention date on a file will ensure that:

Answer 4

data will not be deleted before that date.

Question 5

The BEST method for assessing the effectiveness of a business continuity plan is to review the:

Answer 5

results from previous tests

Question 6

A company with a limited budget has a recovery time objective of 72 hours and a recovery point objective of 24 hours. Which of the following would BEST meet the requirements of the business?

Answer 6

A warm site

Question 7

The cost of ongoing operations when a disaster recovery plan (DRP) is in place, compared to not having a DRP, will MOST likely:

Answer 7

increase.

Question 8

Depending on the complexity of an organization’s business continuity plan (BCP), it may be developed as a set of plans to address various aspects of business continuity and disaster recovery. In such an environment, it is essential that:

Answer 8

each plan is consistent with one another.

Question 9

Determining the service delivery objective should be based PRIMARILY on:

Answer 9

the minimum acceptable operational capability.

Question 10

A disaster recovery plan for an organization’s financial system specifies that the recovery point objective is zero and the recovery time objective is 72 hours. Which of the following is the MOST cost-effective solution?

Answer 10

Synchronous remote copy of the data in a warm site that can be operational in 48 hours

Question 11

Disaster recovery planning addresses the:

Answer 11

technological aspect of business continuity planning (BCP).

Question 12

Due to changes in IT, the disaster recovery plan of a large organization has been changed. What is the PRIMARY risk if the new plan is not tested?

Answer 12

Catastrophic service interruption

Question 13

During a disaster recovery test, an IS auditor observes that the performance of the disaster recovery site’s server is slow. To find the root cause of this, the IS auditor should FIRST review the:

Answer 13

configurations and alignment of the primary and disaster recovery sites.

Question 14

During an audit of a business continuity plan (BCP), an IS auditor found that, although all departments were housed in the same building, each department had a separate BCP. The IS auditor recommended that the BCPs be reconciled. Which of the following areas should be reconciled FIRST?

Answer 14

Evacuation plan

Question 15

During an IS audit of the disaster recovery plan of a global enterprise, the auditor observes that some remote offices have very limited local IT resources. Which of the following observations would be the MOST critical for the IS auditor?

Answer 15

A test has not been made to ensure that local resources could maintain security and service standards when recovering from a disaster or incident.

Question 16

During a review of a business continuity plan, an IS auditor noticed that the point at which a situation is declared to be a crisis has not been defined. The MAJOR risk associated with this is that:

Answer 16

execution of the disaster recovery plan could be impacted.

Question 17

During the design of a business continuity plan, the business impact analysis identifies critical processes and supporting applications. This will PRIMARILY influence the:

Answer 17

recovery strategy.

Question 18

A financial institution that processes millions of transactions each day has a central communications processor (switch) for connecting to automated teller machines. Which of the following would be the BEST contingency plan for the communications processor?

Answer 18

Alternate processor at another network node

Question 19

For effective implementation after a business continuity plan (BCP) has been developed, it is MOST important that the BCP be:

Answer 19

communicated to appropriate personnel.

Question 20

he frequent updating of which of the following is key to the continued effectiveness of a disaster recovery plan?

Answer 20

Contact information of key personnel

Question 21

A hot site should be implemented as a recovery strategy when the:

Answer 21

disaster downtime tolerance is low.

Question 22

If the recovery time objective increases:

Answer 22

the disaster tolerance increases.

Question 23

In a contract with a hot, warm or cold site, contractual provisions should PRIMARILY cover which of the following considerations?

Answer 23

Number of subscribers permitted to use a site at one time

Question 24

In addition to the backup considerations for all systems, which of the following is an important consideration in providing backup for online systems?

Answer 24

Ensuring periodic dumps of transaction logs

Question 25

In a disaster recovery situation, which of the following is the MOST important metric to ensure that data are synchronized between critical systems?

Answer 25

Recovery point objective

Question 26

In determining the acceptable time period for the resumption of critical business processes:

Answer 26

both downtime costs and recovery costs need to be evaluated.

Question 27

Integrating the business continuity plan into IT project management aids in:

Answer 27

the development of a more comprehensive set of requirements.

Question 28

In the event of a data center disaster, which of the following would be the MOST appropriate strategy to enable a complete recovery of a critical database?

Answer 28

Real-time replication to a remote site

Question 29

In which of the following situations is it MOST appropriate to implement data mirroring as the recovery strategy?

Answer 29

The recovery point objective is low.

Question 30

An IS auditor can verify that an organization's business continuity plan (BCP) is effective by reviewing the:

Answer 30

results of business continuity tests performed by IS and end-user personnel.

Question 31

An IS auditor discovers that the disaster recovery plan (DRP) for a company does not include a critical application hosted in the cloud. Management's response states that the cloud vendor is responsible for disaster recovery (DR) and DR-related testing. What is the NEXT course of action for the IS auditor to pursue?

Answer 31

Review the vendor contract to determine its DR capabilities.

Question 32

An IS auditor evaluating the resilience of a high-availability network should be MOST concerned if:

Answer 32

the servers are clustered in one site.

Question 33

An IS auditor is auditing an IT disaster recovery plan. The IS auditor should PRIMARILY ensure that the plan covers:

Answer 33

analysis and prioritization of business functions.

Question 34

An IS auditor is conducting a review of the disaster recovery procedures for a data center. Which of the following indicators BEST shows that the procedures meet the requirements?

Answer 34

A tabletop exercise using the procedures was conducted.

Question 35

An IS auditor is performing an audit in the data center when the fire alarm begins sounding. The audit scope includes disaster recovery, so the auditor observes the data center staff response to the alarm. Which of the following is the MOST important action for the data center staff to complete in this scenario?

Answer 35

Ensure all persons in the data center are evacuated.

Question 36

An IS auditor is performing a review of the disaster recovery hot site used by a financial institution. Which of the following would be the GREATEST concern?

Answer 36

Disk space utilization data are not kept current.

Question 37

An IS auditor is reviewing an organization's recovery from a disaster in which not all the critical data needed to resume business operations were retained. Which of the following was incorrectly defined?

Answer 37

The recovery point objective

Question 38

An IS auditor is reviewing the most recent disaster recovery plan of an organization. Which approval is the MOST important when determining the availability of system resources required for the plan?

Answer 38

IT management

Question 39

An IS auditor notes during an audit that an organization's business continuity plan does not adequately address information confidentiality during the recovery process. The IS auditor should recommend that the plan be modified to include:

Answer 39

the level of information security required when business recovery procedures are invoked.

Question 40

An IS auditor observed that multiple applications are hosted on the same server. The recovery time objective (RTO) for the server will be:

Answer 40

based on the application with the shortest RTO.

Question 41

An IS auditor reviewing an organization's disaster recovery plan should PRIMARILY verify that it is:

Answer 41

regularly reviewed and updated.

Question 42

It is MOST appropriate to implement an incremental backup scheme when:

Answer 42

there is limited media capacity.

Question 43

IT management has decided to install a level 1 Redundant Array of Inexpensive Disks (RAID) system in all servers to compensate for the elimination of offsite backups. The IS auditor should recommend:

Answer 43

reinstating the offsite backups.

Question 44

A large chain of shops with electronic funds transfer at point-of-sale devices has a central communications processor for connecting to the banking network. Which of the following is the BEST disaster recovery plan for the communications processor?

Answer 44

Alternative standby processor at another network node

Question 45

A live test of a mutual agreement for IT system recovery has been carried out, including a four-hour test of intensive usage by the business units. The test has been successful, but gives only partial assurance that the:

Answer 45

system and the IT operations team can sustain operations in the emergency environment.

Question 46

A lower recovery time objective results in:

Answer 46

higher cost.

Question 47

The MAIN criterion for determining the severity level of a service disruption incident is:

Answer 47

downtime.

Question 48

The MAIN purpose for periodically testing offsite disaster recovery facilities is to:

Answer 48

ensure the continued compatibility of the contingency facilities.

Question 49

Management considered two projections for its disaster recovery plan: plan A with two months to fully recover and plan B with eight months to fully recover. The recovery point objectives are the same in both plans. It is reasonable to expect that plan B projected higher:

Answer 49

downtime costs.

Question 50

A medium-sized organization, whose IT disaster recovery measures have been in place and regularly tested for years, has just developed a formal business continuity plan (BCP). A basic BCP tabletop exercise has been performed successfully. Which testing should an IS auditor recommend be performed NEXT to verify the adequacy of the new BCP?

Answer 50

Functional test of a scenario with limited IT involvement

Question 51

An offsite information processing facility with electrical wiring, air conditioning and flooring, but no computer or communications equipment, is a:

Answer 51

cold site.

Question 52

An optimized disaster recovery plan for an organization should:

Answer 52

reduce the length of the recovery time and the cost of recovery.

Question 53

An organization completed a business impact analysis as part of business continuity planning. The NEXT step in the process is to develop:

Answer 53

a business continuity strategy.

Question 54

An organization has a business process with a recovery time objective equal to zero and a recovery point objective close to one minute. This implies that the process can tolerate:

Answer 54

a data loss of up to one minute, but the processing must be continuous.

Question 55

An organization has just completed its annual risk assessment. Regarding the business continuity plan, what should an IS auditor recommend as the next step for the organization?

Answer 55

Review and evaluate the business continuity plan for adequacy

Question 56

An organization having a number of offices across a wide geographical area has developed a disaster recovery plan. Using actual resources, which of the following is the MOST cost-effective test of the disaster recovery plan?

Answer 56

Preparedness test

Question 57

An organization's disaster recovery plan should address early recovery of:

Answer 57

processing in priority order, as defined by business management.

Question 58

The PRIMARY objective of business continuity and disaster recovery plans should be to:

Answer 58

protect human life.

Question 59

The PRIMARY objective of testing a business continuity plan is to:

Answer 59

identify limitations of the business continuity plan.

Question 60

The PRIMARY purpose of a business impact analysis is to:

Answer 60

define recovery strategies.

Question 61

The PRIMARY purpose of implementing Redundant Array of Inexpensive Disks level 1 in a file server is to:

Answer 61

ensure availability of data.

Question 62

Recovery procedures for an information processing facility are BEST based on:

Answer 62

recovery time objective.

Question 63

Segmenting a highly sensitive database results in:

Answer 63

reduced exposure.

Question 64

There are several methods of providing telecommunication continuity. The method of routing traffic through split cable or duplicate cable facilities is called:

Answer 64

diverse routing.

Question 65

To address an organization's disaster recovery requirements, backup intervals should not exceed the:

Answer 65

recovery point objective.

Question 66

To ensure structured disaster recovery, it is MOST important that the business continuity plan and disaster recovery plan are:

Answer 66

tested regularly.

Question 67

To optimize an organization's business continuity plan, an IS auditor should recommend a business impact analysis to determine:

Answer 67

the business processes that must be recovered following a disaster to ensure the organization's survival.

Question 68

What is the BEST backup strategy for a large database with data supporting online sales?

Answer 68

Mirrored hard disks

Question 69

When an organization's disaster recovery plan has a reciprocal agreement, which of the following risk treatment approaches is being applied?

Answer 69

Mitigation

Question 70

When auditing the archiving process of emails, the IS auditor should pay the MOST attention to:

Answer 70

the existence of a data retention policy.

Question 71

When developing a business continuity plan, which of the following tools should be used to gain an understanding of the organization's business processes?

Answer 71

Risk assessment

Question 72

When developing a disaster recovery plan, the criteria for determining the acceptable downtime should be the:

Answer 72

maximum tolerable outage.

Question 73

When reviewing a disaster recovery plan, an IS auditor should be MOST concerned with the lack of:

Answer 73

process owner involvement.

Question 74

Which of the following backup techniques is the MOST appropriate when an organization requires extremely granular data restore points, as defined in the recovery point objective?

Answer 74

Continuous data backup

Question 75

Which of the following BEST helps define disaster recovery strategies?

Answer 75

Maximum tolerable downtime and data loss

Question 76

Which of the following BEST mitigates the risk arising from using reciprocal agreements as a recovery alternative?

Answer 76

Ensure that partnering organizations are separated geographically.

Question 77

Which of the following BEST mitigates the risk of backup media containing irreplaceable information being lost or stolen while in transit?

Answer 77

Maintain a duplicate copy.

Question 78

Which of the following business continuity plan tests involves participation of relevant members of the crisis management/response team to practice proper coordination?

Answer 78

Tabletop

Question 79

Which of the following choices would MOST likely ensure that a disaster recovery effort is successful?

Answer 79

Data restoration was completed.

Question 80

Which of the following disaster recovery testing techniques is the MOST efficient way to determine the effectiveness of the plan?

Answer 80

Preparedness tests

Question 81

Which of the following distinguishes a business impact analysis from a risk assessment?

Answer 81

A determination of acceptable downtime

Question 82

Which of the following ensures the availability of transactions in the event of a disaster?

Answer 82

Transmit transactions offsite in real time.

Question 83

Which of the following groups is the BEST source of information for determining the criticality of application systems as part of a business impact analysis?

Answer 83

Business processes owners

Question 84

Which of the following inputs would PRIMARILY help in designing the data backup strategy in case of potential natural disasters?

Answer 84

Recovery point objective

Question 85

Which of the following is a continuity plan test that simulates a system crash and uses actual resources to cost-effectively obtain evidence about the plan's effectiveness?

Answer 85

Preparedness test

Question 86

Which of the following is an appropriate test method to apply to a business continuity plan?

Answer 86

Paper

Question 87

Which of the following is MOST important to determine the recovery point objective for a critical process in an enterprise?

Answer 87

Extent of data loss that is acceptable

Question 88

Which of the following issues should be the GREATEST concern to the IS auditor when reviewing an IT disaster recovery test?

Answer 88

During the test, some of the backup systems were defective or not working, causing the test of these systems to fail.

Question 89

Which of the following is the BEST indicator of the effectiveness of backup and restore procedures while restoring data after a disaster?

Answer 89

Recovery time objectives were met.

Question 90

Which of the following is the BEST method for determining the criticality of each application system in the production environment?

Answer 90

Perform a business impact analysis.

Question 91

Which of the following is the BEST method to ensure that critical IT system failures do not recur?

Answer 91

Perform root cause analysis.

Question 92

Which of the following is the BEST method to ensure that the business continuity plan remains up to date?

Answer 92

The group walks through the different scenarios of the plan from beginning to end.

Question 93

Which of the following is the BEST reason for integrating the testing of noncritical systems in disaster recovery plans (DRPs) with business continuity plans (BCPs)?

Answer 93

BCPs may assume the existence of capabilities that are not in DRPs.

Question 94

Which of the following is the GREATEST risk of an organization using reciprocal agreements for disaster recovery between two business units?

Answer 94

Both entities are vulnerable to the same incident.

Question 95

Which of the following is the GREATEST risk when storage growth in a critical file server is not managed properly?

Answer 95

Server recovery work may not meet the recovery time objective.

Question 96

Which of the following is the MOST critical element to effectively execute a disaster recovery plan?

Answer 96

Offsite storage of backup data

Question 97

Which of the following is the MOST effective method for disposing of magnetic media that contains confidential information?

Answer 97

Destroying

Question 98

Which of the following is the MOST efficient strategy for the backup of large quantities of mission-critical data when the systems need to be online to take sales orders 24 hours a day?

Answer 98

Implementing a fault-tolerant disk-to-disk backup solution

Question 99

Which of the following is the MOST important consideration when defining recovery point objectives?

Answer 99

Acceptable data loss

Question 100

Which of the following is the MOST important criterion when selecting a location for an offsite storage facility for IS backup files? The offsite facility must be:

Answer 100

physically separated from the data center and not subject to the same risk.

Question 101

Which of the following is the MOST reasonable option for recovering a non- critical system?

Answer 101

Cold site

Question 102

Which of the following is the PRIMARY objective of the business continuity plan process?

Answer 102

To manage risk while recovering from an event that adversely affected operations

Question 103

Which of the following must exist to ensure the viability of a duplicate information processing facility?

Answer 103

The workload of the primary site is monitored to ensure adequate backup is available.

Question 104

Which of the following provides the BEST evidence of an organization's disaster recovery capability readiness?

Answer 104

Results of tests and exercises

Question 105

Which of the following recovery strategies is MOST appropriate for a business having multiple offices within a region and a limited recovery budget?

Answer 105

A reciprocal arrangement between its offices

Question 106

Which of the following represents the GREATEST risk created by a reciprocal agreement for disaster recovery made between two companies?

Answer 106

Developments may result in hardware and software incompatibility.

Question 107

Which of the following scenarios provides the BEST disaster recovery plan to implement for critical applications?

Answer 107

Daily data backups that are stored offsite and a hot site located 140 kilometers from the main data center

Question 108

Which of the following should be a MAJOR concern for an IS auditor reviewing a business continuity plan?

Answer 108

Test results are not adequately documented.

Question 109

Which of the following should be of MOST concern to an IS auditor reviewing the business continuity plan (BCP)?

Answer 109

The responsibility for declaring a disaster is not identified.

Question 110

Which of the following stakeholders is the MOST important in terms of developing a business continuity plan?

Answer 110

Process owners

Question 111

Which of the following statements is useful while drafting a disaster recovery plan

Answer 111

Downtime costs increase with time.

Question 112

Which of the following tasks should be performed FIRST when preparing a disaster recovery plan?

Answer 112

Perform a business impact analysis.

Question 113

Which of the following would be MOST important for an IS auditor to verify while conducting a business continuity audit?

Answer 113

Human safety procedures are in place.

Question 114

Which of the following would BEST ensure uninterrupted operations in an organization with IT operation centers in several countries?

Answer 114

Employee training on the business continuity plan

Question 115

Which of the following would BEST support 24/7 availability?

Answer 115

Mirroring

Question 116

Which of the following would be the MOST appropriate recovery strategy for a sensitive system with a high recovery time objective (RTO)?

Answer 116

Cold site

Question 117

Which of the following would contribute MOST to an effective business continuity plan?

Answer 117

Planning involves all user departments.

Question 118

While observing a full simulation of the business continuity plan, an IS auditor notices that the notification systems within the organizational facilities could be severely impacted by infrastructure damage. The BEST recommendation the IS auditor can provide to the organization is to ensure:

Answer 118

redundancies are built into the notification system.

Question 119

While reviewing the IT infrastructure, an IS auditor notices that storage resources are continuously being added. The IS auditor should:

Answer 119

review the capacity management process.

Question 120

With respect to business continuity strategies, an IS auditor interviews key stakeholders in an organization to determine whether they understand their roles and responsibilities. The IS auditor is attempting to evaluate the:

Answer 120

clarity and simplicity of the business continuity plans.