Published - Fri, 03 Mar 2023
CISA—Certified Information Systems Auditor - Part 369
1. In the event of a data center disaster, which of the following would be the MOST appropriate strategy to enable a complete recovery of a critical database?
A) Daily data backup to tape and storage at a remote site
B) Real-time replication to a remote site
C) Hard disk mirroring to a local server
D) Real-time data backup to the local storage area network (SAN)
2. Which of the following backup techniques is the MOST appropriate when an organization requires extremely granular data restore points, as defined in the recovery point objective (RPO)?
A) Virtual tape libraries
B) Disk-based snapshots
C) Continuous data backup
D) Disk-to-tape backup
3. What is the BEST backup strategy for a large database with data supporting online sales?
A) Weekly full backup with daily incremental backup
B) Daily full backup
C) Clustered servers
D) Mirrored hard disks
4. During an audit, an IS auditor notes that an organization's business continuity plan (BCP) does not adequately address information confidentiality during a recovery process. The IS auditor should recommend that the plan be modified to include:
A) the level of information security required when business recovery procedures are invoked.
B) information security roles and responsibilities in the crisis management structure.
C) information security resource requirements.
D) change management procedures for information security that could affect business continuity arrangements.
5. Which of the following is the GREATEST risk when storage growth in a critical file server is not managed properly?
A) Backup time would steadily increase
B) Backup operational cost would significantly increase
C) Storage operational cost would significantly increase
D) Server recovery work may not meet the recovery time objective (RTO)
A) Daily data backup to tape and storage at a remote site
B) Real-time replication to a remote site
C) Hard disk mirroring to a local server
D) Real-time data backup to the local storage area network (SAN)
2. Which of the following backup techniques is the MOST appropriate when an organization requires extremely granular data restore points, as defined in the recovery point objective (RPO)?
A) Virtual tape libraries
B) Disk-based snapshots
C) Continuous data backup
D) Disk-to-tape backup
3. What is the BEST backup strategy for a large database with data supporting online sales?
A) Weekly full backup with daily incremental backup
B) Daily full backup
C) Clustered servers
D) Mirrored hard disks
4. During an audit, an IS auditor notes that an organization's business continuity plan (BCP) does not adequately address information confidentiality during a recovery process. The IS auditor should recommend that the plan be modified to include:
A) the level of information security required when business recovery procedures are invoked.
B) information security roles and responsibilities in the crisis management structure.
C) information security resource requirements.
D) change management procedures for information security that could affect business continuity arrangements.
5. Which of the following is the GREATEST risk when storage growth in a critical file server is not managed properly?
A) Backup time would steadily increase
B) Backup operational cost would significantly increase
C) Storage operational cost would significantly increase
D) Server recovery work may not meet the recovery time objective (RTO)
1. Right Answer: B
Explanation: With real-time replication to a remote site, data are updated simultaneously in two separate locations; therefore, a disaster in one site would not damage the information located in the remote site. This assumes that both sites were not affected by the disaster. Daily tape backup recovery could lose up to a day's work of data. Choices C and D take place in the same data center and could possibly be affected by the same disaster.
2. Right Answer: C
Explanation: The recovery point objective (RPO) is based on the acceptable data loss in the case of a disruption. In this scenario the organization needs a short RPO. Virtual tape libraries, disk- based snapshots and disk-to-tape backup would require time to complete the backup, while continuous data backup happens online (in real time).
3. Right Answer: A
Explanation: Weekly full backup and daily incremental backup is the best backup strategy; it ensures the ability to recover the database and yet reduces the daily backup time requirements. A full backup normally requires a couple of hours, and therefore it can be impractical to conduct a full back up every day. Clustered servers provide a redundant processing capability, but are not a backup.Mirrored hard disks will not help in case of disaster.
4. Right Answer: A
Explanation: Business should consider whether information security levels required during recovery should be the same, lower or higher than when business is operating normally. In particular, any special rules for access to confidential data during a crisis need to be identified. The other choices do not directly address the information confidentiality issue.
5. Right Answer: D
Explanation: In case of a crash, recovering a server with an extensive amount of data could require a significant amount of time. If the recovery cannot meet the recovery time objective (RTO), there will be a discrepancy in IT strategies. It's important to ensure that server restoration can meet the RTO. Incremental backup would only take the backup of the daily differential, thus a steady increase in backup time is not always true. The backup and storage costs issues are not as significant as not meeting the RTO.
Explanation: With real-time replication to a remote site, data are updated simultaneously in two separate locations; therefore, a disaster in one site would not damage the information located in the remote site. This assumes that both sites were not affected by the disaster. Daily tape backup recovery could lose up to a day's work of data. Choices C and D take place in the same data center and could possibly be affected by the same disaster.
2. Right Answer: C
Explanation: The recovery point objective (RPO) is based on the acceptable data loss in the case of a disruption. In this scenario the organization needs a short RPO. Virtual tape libraries, disk- based snapshots and disk-to-tape backup would require time to complete the backup, while continuous data backup happens online (in real time).
3. Right Answer: A
Explanation: Weekly full backup and daily incremental backup is the best backup strategy; it ensures the ability to recover the database and yet reduces the daily backup time requirements. A full backup normally requires a couple of hours, and therefore it can be impractical to conduct a full back up every day. Clustered servers provide a redundant processing capability, but are not a backup.Mirrored hard disks will not help in case of disaster.
4. Right Answer: A
Explanation: Business should consider whether information security levels required during recovery should be the same, lower or higher than when business is operating normally. In particular, any special rules for access to confidential data during a crisis need to be identified. The other choices do not directly address the information confidentiality issue.
5. Right Answer: D
Explanation: In case of a crash, recovering a server with an extensive amount of data could require a significant amount of time. If the recovery cannot meet the recovery time objective (RTO), there will be a discrepancy in IT strategies. It's important to ensure that server restoration can meet the RTO. Incremental backup would only take the backup of the daily differential, thus a steady increase in backup time is not always true. The backup and storage costs issues are not as significant as not meeting the RTO.
Created by
Comments (0)
Search
Popular categories
Latest blogs
CA Foundation Business Economics Questions 2023 - Part 32
Fri, 03 Mar 2023
CA Foundation Business Economics Questions 2023 - Part 31
Fri, 03 Mar 2023
CA Foundation Business Economics Questions 2023 - Part 30
Fri, 03 Mar 2023
Write a public review