Term
| Business Impact Assessment |
|
Definition
|
|
Term
| Business Impact Assessment |
|
Definition
- gather needed assessment materials
- perform vulnerability assessment
- analyze information
- document present recommendations
- utilizes quantative and qualitative criterias
- helps a company decide what needs to be recovered and how quickly it needs to be recovered.
|
|
|
Term
| Business Continuity Plan Development |
|
Definition
| define and document continuity strategy |
|
|
Term
| Plan Approval and Implementation |
|
Definition
| receive approval by senior management and create an awareness o the plan |
|
|
Term
| Plan Approval and Implementation |
|
Definition
Receive approval by senior management
develop enterprise awareness of the plan
maintain and update plan |
|
|
Term
| Scope plan and initiation |
|
Definition
| marks the start of the business continuity planning and defines the scope for the plan |
|
|
Term
| Scope plan and initiation |
|
Definition
identify the work required
identify resources to be used
define management practices to be used |
|
|
Term
|
Definition
(Ordered)
Scope plan and initiation
Business Impact Assessment
Business Continuity Plan Development
Plan Approval and Implementation |
|
|
Term
|
Definition
The facility has necessary space and infrastructure support (electric power,
telecommunications support, environmental controls), but does not contain IT equipment. |
|
|
Term
|
Definition
The facility is partially equipped with some of the necessary IT equipment. It is maintained in
an operational status ready to receive the relocated system. |
|
|
Term
|
Definition
The facility is equipped with all necessary infrastructure and IT equipment to be immediately
and fully functional. A hot site is typically staffed 24 hours a day, 7 days a week. |
|
|
Term
|
Definition
A self-contained transportable unit that is custom-fitted with specific telecommunications and
IT equipment necessary to meet defined requirements |
|
|
Term
|
Definition
| A fully redundant facility that has real-time information mirroring and is identical in all technical aspects to the primary site. |
|
|
Term
|
Definition
Allows backups to be created offsite automatically by the use of an electronic vaulting provider. This is primarily done through a batch process of transferring bulk data to a remote
server. Media that may be used includes optical disks, magnetic disks, mass storage devices, or
automated tape libraries. |
|
|
Term
|
Definition
Transmits transaction logs or journals to a remote location. Remote journaling allows
parallel processing of transactions at a remote site, and enables transactions, applications, or database
changes since the last backup to be recovered quickly. |
|
|
Term
|
Definition
| a combination of server mirroring and remote journaling where multiple local and multiple offsite backups are created. |
|
|
Term
|
Definition
real-time backup system that creates an exact duplicate copy of your data onto
duplicate hardware. This can be accomplished with a RAID 1 system or with complete mirrored server
hardware boxes. The backup is usually local, but the backup is in real-time. |
|
|
Term
|
Definition
| Who is responsible for restoring the operations of the primary site, after the immediate disaster has ended? |
|
|
Term
|
Definition
is responsible for getting ensuring that the critical business functions are operating at the alternate
backup process site, after a disaster has occurred |
|
|
Term
|
Definition
is responsible to create,
implement, and test the BCP plan Senior Management has the ultimate responsibility for all phases of the plan, from
initiating, monitoring and testing of the plan, and execution of the plan during a disaster. |
|
|
Term
|
Definition
| How often should a DRP plan be tested? |
|
|
Term
| procedures to prevent interruptions to normal business plan |
|
Definition
| The purpose of BCP planning? |
|
|
Term
|
Definition
-
Captures all files selected for backup.
-
Depending on the volume of data and frequency, full backups can require a large storage capacity and a significant amount of time to record the information.
-
Because of the overhead, a full backup is NOT ideal for cases where the data changes infrequently from backup to backup.
-
In cases where much of the data does not change from backup to backup, incremental / differential backups can be considered.
|
|
|
Term
|
Definition
What type of backup,
-
Captures only files created or modified since the last backup.
-
Is the fastest backup method
-
This method is more efficient from a storage media perspective, but may require more time for restoration, depending on when the last full backup was taken prior to initiating a recovery operation.
-
It stores all files that have changed since the last full backup, incremental or differential backup.
|
|
|
Term
|
Definition
-
Stores files that were created or modified since the last full backup.
-
This method takes less time to complete than a full backup and may require fewer storage units than an incremental approach because only the full backup tape and the last incremental tape would be needed for restoration.
-
Disadvantages: is that the backups take longer because the amount of data since the last full backup increases daily until the next full backup is run. Restore is slower than restoring from a full backup and the storage space requirement is higher than incremental.
|
|
|
Term
| Friday's full backup + incremental backups from Monday, Tuesday, and Wednesday |
|
Definition
let's assume a full backup was performed on a Friday and incrementals were performed on Monday, Tuesday, and Wednesday. If the server crashed on Thursday, one would need to restore |
|
|
Term
|
Definition
| what type of restoration if Friday's full backup + Wednesday's differential backup is restored? |
|
|
Term
|
Definition
-
What is an agreement in which two parties agree to support each other in case of a disruptive event referred as a mutual aid agreement.
-
major disadvantge is resource contention with partner company in case of disaster strikes both companies.
-
is low cost, in comparison to hot site and warm site
|
|
|
Term
|
Definition
-
is responsible for getting ensuring that the critical business functions are operating at the alternate backup process site, after a disaster has occurred.
-
is responsible for ensuring the critical systems and applications are back online
|
|
|
Term
|
Definition
| Which backup type only captures files created or modified since the last backup? |
|
|
Term
|
Definition
resource requirements
criticality priorization
downtime estimation |
|
|
Term
|
Definition
Copies of plans are distributed to each business unit's management team, where the plans are reviewed to verify whether all procedures and critical areas of the organization are addressed. It also determines if sufficient supplies are stored at the backup site, telephone number listings are current, quantities of forms are adequate, and a copy of the recovery plan and necessary operational
manuals are available. |
|
|
Term
| Structured walk-through test |
|
Definition
Team members meet to verbally walk through the specific steps of
each component of the disaster recovery process as documented in the disaster recovery plan. The purpose of the test is to confirm the effectiveness of the plan and to identify
gaps, bottlenecks or other weaknesses in the plan. |
|
|
Term
|
Definition
Organization emulates a disaster so normal operations will not be interrupted. A disaster scenario should take into consideration the purpose of the test, objectives, type of test, timing, scheduling, duration, test participants, assignments, constraints, assumptions, and test steps. Testing can
include the notification procedures, temporary operating procedures, and backup and recovery operations. |
|
|
Term
|
Definition
Involves bringing the recovery site to a state of operational readiness, but maintaining operations at the primary site. Thus staff are relocated, backup tapes transferred, and
operational readiness established in accordance with the disaster recovery plan while operations at the
primary site continue normally. For instance, under this scenario, historical transactions, are processed
against the preceding day s backup files at the contingency processing site or hot-site. All reports
produced at the alternate site for the current business date should agree with those reports produced at the existing processing site. |
|
|
Term
|
Definition
| Organization simulates a disaster, even to the point of ceasing normal production operations and involving emergency services. |
|
|
Term
| Financial management activities during business continuity and disaster recovery process |
|
Definition
notify insurance companies
track recovery costs
assess cash flow projections
establish financial reimbursement procedures |
|
|
Term
|
Definition
| purpose to identify the impact of a loss of critical business functions? |
|
|
Term
|
Definition
| What backup strategy involves three media pools for backups (Daily, weekly, and monthly) where each pool has a default retention period and number of storage media to save? |
|
|
Term
| Business Continuity Management Life Cycle |
|
Definition
Anaylze your business
Assess the risks
Develop your strategy
Develop your plan
Rehearse the plan |
|
|
Term
|
Definition
| A holistic management process that identies potential impacts that threaten an organization and provides a framework for building resilience and effective response tat will safeguard the interests of its key stakeholders, reputation, brand and value-creating activities. |
|
|
Term
|
Definition
| Required recovery time following a disaster 30 days? |
|
|
Term
|
Definition
| Required recovery time following a disaster 7 days? |
|
|
Term
|
Definition
| Required recovery time following a disaster 72 hours? |
|
|
Term
|
Definition
| Required recovery time following a disaster 24 hours |
|
|
Term
|
Definition
| Required recovery time following a disaster Minutes to Hours |
|
|
Term
| Maximum Tolerable Period of Disruption (MTPD) or (MTD) |
|
Definition
-
The period of time after which an organization's viability will be irrevocably threatened if delivery of a particular product or service cannont be resumed.
-
Or, a critical business system to be disabled for over long period.
|
|
|
Term
| Recovery Time Objective (RTO) |
|
Definition
| Allows time for unforeseen difficulty with recover or in other words is lower than critically necessary. |
|
|
Term
immediately following an exercise
following a major change in personnel
after installing software |
|
Definition
| A BCP should be updated and maintained |
|
|
Term
|
Definition
| Regardless of industry, which element of legal and regulatory requirements are all industries subject to? |
|
|
Term
| Meeting pre-determined time frame. |
|
Definition
| After the completion of BIA, recovery strategies must be developed. The primary concern of these recovery strategies is? |
|
|
Term
|
Definition
| What establishes the effect of disruptions on the organization? |
|
|
