Business Continuity Planning—Disaster Recovery Planning
This chapter is supplemental to and coordinated with the Business Continuity Planning—Disaster Recovery Planning Chapter in the CISSP Prep Guide. The fundamentals of business continuity planning-disaster recovery planning are covered in Chapter 8 of the CISSP Prep Guide at a level on par with that of the CISSP Examination.
It is assumed that the reader has a basic knowledge of the material contained in Chapter 8 and has the CISSP Prep Guide available to provide background information for the advanced questions pertaining to the Business Continuity Planning—Disaster Recovery Planning chapter. Here we'll discuss business continuity, business resumption, disaster recovery, emergency management, and vulnerability assessments.
Advanced Sample Questions
Which choice below is the MOST accurate description of a warm site?
A backup processing facility with adequate electrical wiring and air conditioning, but no hardware or software installed
A backup processing facility with most hardware and software installed, which can be operational within a matter of days
A backup processing facility with all hardware and software installed and 100% compatible with the original site, operational within hours
A mobile trailer with portable generators and air conditioning
Which choice below is NOT an accurate description or element of remote sensing technology?
Photographic, radar, infrared, or multi-spectral imagery from manned or unmanned aircraft.
Photographic, radar, infrared, or multi-spectral imagery from land-based tracking stations.
Photographic, radar, infrared, or multi-spectral imagery from geostationary or orbiting satellites.
RS intelligence may be integrated into geographic information systems (GIS) to produce map-based products.
Which disaster recovery/emergency management plan testing type below is considered the most cost-effective and efficient way to identify areas of overlap in the plan before conducting more demanding training exercises?
Full-scale exercise
Walk-through drill
Table-top exercise test
Evacuation drill
Which task below would normally be considered a BCP task, rather than a DRP task?
Life safety processes
Project scoping
Restoration procedures
Recovery procedures
Which choice below is NOT a role or responsibility of the person designated to manage the contingency planning process?
Providing direction to senior management
Providing stress reduction programs to employees after an event
Ensuring the identification of all critical business functions
Integrating the planning process across business units
Which choice below is NOT an emergency management procedure directly relating to financial decision making?
Establishing accounting procedures to track the costs of emergencies
Establishing procedures for the continuance of payroll
Establishing critical incident stress procedures
Establishing program procurement procedures
Which choice below is NOT considered an appropriate role for senior management in the business continuity and disaster recovery process?
Delegate recovery roles
Publicly praise successes
Closely control media and analyst communications
Assess the adequacy of information security during the disaster recovery
Which choice below is NOT considered a potential hazard resulting from natural events?
Earthquake/land shift
Forest fire
Arson
Urban fire
Which choice below represents the most important first step in creating a business resumption plan?
Performing a risk analysis
Obtaining senior management support
Analyzing the business impact
Planning recovery strategies
Which choice below would NOT be a valid reason for testing the disaster recovery plan?
Testing provides the contingency planner with recent documentation.
Testing verifies the accuracy of the recovery procedures.
Testing prepares the personnel to properly execute their emergency duties.
Testing identifies deficiencies within the recovery procedures.
Which choice below is NOT a commonly accepted definition for a disaster?
An occurrence that is outside the normal computing function
An occurrence or imminent threat to the entity of widespread or severe damage, injury, loss of life, or loss of property
An emergency that is beyond the normal response resources of the entity
A suddenly occurring event that has a long-term negative impact on social life
Which choice below is NOT considered an appropriate role for Financial Management in the business continuity and disaster recovery process?
Tracking the recovery costs
Monitoring employee morale and guarding against employee burnout
Formally notifying insurers of claims
Reassessing cash flow projections
Which choice below most accurately describes a business continuity program?
Ongoing process to ensure that the necessary steps are taken to identify the impact of potential losses and maintain viable recovery
A program that implements the mission, vision, and strategic goals of the organization
A determination of the effects of a disaster on human, physical, economic, and natural resources
A standard that allows for rapid recovery during system interruption and data loss
What is the responsibility of the contingency planner regarding LAN backup and recovery if the LAN is part of a building server environment?
Getting a copy of the recovery procedures from the building server administrator
Recovering client/server systems owned and supported by internal staff
Classifying the recovery time frame of the business unit LAN
Identifying essential business functions
Which choice below is the correct definition of a Mutual Aid Agreement?
A management-level analysis that identifies the impact of losing an entity's resources
An appraisal or determination of the effects of a disaster on human, physical, economic, and natural resources
A prearranged agreement to render assistance to the parties of the agreement
Activities taken to eliminate or reduce the degree of risk to life and property
In which order should the following steps be taken to create an emergency management plan?
_____ a. Implement the plan
_____ b. Form a planning team
_____ c. Develop a plan
_____ d. Conduct a vulnerability assessment
Place the BRP groups below in their properly tiered organizational structure, from highest to lowest:
_____ a. Policy group
_____ b. Senior executives
_____ c. Emergency response team
_____ d. Disaster management team
Which choice below most accurately describes a business impact analysis (BIA)?
A program that implements the strategic goals of the organization
A management-level analysis that identifies the impact of losing an entity's resources
A prearranged agreement between two or more entities to provide assistance
Activities designed to return an organization to an acceptable operating condition
In which order should the following steps be taken to perform a vulnerability assessment?
_____ a. List potential emergencies
_____ b. Estimate probability
_____ c. Assess external and internal resources
_____ d. Assess potential impact
According to FEMA, which choice below is NOT a recommended way to purify water after a disaster?
Adding 16 drops per gallon of household liquid bleach to the water
Boiling from 3 to 5 minutes
Adding water treatment tablets to the water
Distilling the water for twenty minutes
Which choice below is NOT a recommended step to take when resuming normal operations after an emergency?
Re-occupy the damaged building as soon as possible.
Account for all damage-related costs.
Protect undamaged property.
Conduct an investigation.
In developing a emergency or recovery plan, which choice below would NOT be considered a short-term objective?
Priorities for restoration
Acceptable downtime before restoration
Minimum resources needed to accomplish the restoration
The organization's strategic plan
When should security isolation of the incident scene start?
Immediately after the emergency is discovered
As soon as the disaster plan is implemented
After all personnel have been evacuated
When hazardous materials have been discovered at the site
Place the following backup processing alternatives in order, from the most expensive solution to the least expensive:
_____ a. Warm site
_____ b. Hot site
_____ c. Cold site
_____ d. Mutual aid agreement
Which choice below is incorrect regarding when a BCP, DRP, or emergency management plan should be evaluated and modified?
Never; once it has been tested it should not be changed.
Annually, in a scheduled review.
After training drills, tests, or exercises.
After an emergency or disaster response.
Which choice below refers to a business asset?
Events or situations that could cause a financial or operational impact to the organization
Protection devices or procedures in place that reduce the effects of threats
Competitive advantage, credibility or good will
Personnel compensation and retirement programs
Which choice below is an example of a potential hazard due to a technological event, rather than a human event?
Sabotage
Financial collapse
Mass hysteria
Enemy attack
When should the public and media be informed about a disaster?
Whenever site emergencies extend beyond the facility
When any emergency occurs at the facility, internally or externally
When the public's health or safety is in danger
When the disaster has been contained
Which choice below is the first priority in an emergency?
Communicating with employees' families the status of the emergency
Notifying external support resources for recovery and restoration
Protecting the health and safety of everyone in the facility
Warning customers and contactors of a potential interruption of service