Professional Documents
Culture Documents
BUSINESSCONTINUITYANDDISASTERRECOVERY6.1
688
WhichofthefollowingwouldBESTsupport24/7availability?
(A) Dailybackup
(B) Offsitestorage
(C) Mirroring
(D) Periodictesting
BUSINESSCONTINUITYANDDISASTERRECOVERY6.1
689
ThePRIMARYpurposeofimplementingRedundantArrayofInexpensiveDisks(RAID)
level1inafileserveristo:
(A) achieveperformanceimprovement.
(B) provideuserauthentication.
(C) ensureavailabilityofdata.
(D) ensuretheconfidentialityofdata.
BUSINESSCONTINUITYANDDISASTERRECOVERY6.1
690
WhichofthefollowingistheMOSTimportantcriterionwhenselectingalocationforan
offsitestoragefacilityforISbackupfiles?Theoffsitefacilitymustbe:
(A) physicallyseparatedfromthedatacenterandnotsubjecttothesamerisks.
(B) giventhesamelevelofprotectionasthatofthecomputerdatacenter.
(C) outsourcedtoareliablethirdparty.
(D) equippedwithsurveillancecapabilities.
BUSINESSCONTINUITYANDDISASTERRECOVERY6.1
691
Ifadatabaseisrestoredusingbeforeimagedumps,whereshouldtheprocessbegin
followinganinterruption?
(A) Beforethelasttransaction
(B) Afterthelasttransaction
(C) Asthefirsttransactionafterthelatestcheckpoint
(D) Asthelasttransactionbeforethelatestcheckpoint
CISAQuestions
BUSINESSCONTINUITYANDDISASTERRECOVERY6.1
692
Inadditiontothebackupconsiderationsforallsystems,whichofthefollowingisan
importantconsiderationinprovidingbackupforonlinesystems?
(A) Maintainingsystemsoftwareparameters
(B) Ensuringperiodicdumpsoftransactionlogs
(C) Ensuringgrandfatherfathersonfilebackups
(D) Maintainingimportantdataatanoffsitelocation
BUSINESSCONTINUITYANDDISASTERRECOVERY6.1
693
Asupdatestoanonlineorderentrysystemareprocessed,theupdatesarerecordedona
transactiontapeandahardcopytransactionlog.Attheendoftheday,theorderentry
filesarebackedupontape.Duringthebackupprocedure,adrivemalfunctionsandthe
orderentryfilesarelost.Whichofthefollowingisnecessarytorestorethesefiles?
(A) Thepreviousday'sbackupfileandthecurrenttransactiontape
(B) Thepreviousday'stransactionfileandthecurrenttransactiontape
(C) Thecurrenttransactiontapeandthecurrenthardcopytransactionlog
(D) Thecurrenthardcopytransactionlogandthepreviousday'stransactionfile
BUSINESSCONTINUITYANDDISASTERRECOVERY6.1
694
Anoffsiteinformationprocessingfacility:
(A) shouldhavethesameamountofphysicalaccessrestrictionsastheprimary
processingsite.
(B) shouldbeeasilyidentifiedfromtheoutsidesothat,intheeventofanemergency,
itcanbeeasilyfound.
(C) shouldbelocatedinproximitytotheoriginatingsite,soitcanquicklybemade
operational.
(D) neednothavethesamelevelofenvironmentalmonitoringastheoriginatingsite.
BUSINESSCONTINUITYANDDISASTERRECOVERY6.1
695
AnISauditorperformingareviewofthebackupprocessingfacilitiesshouldbeMOST
concernedthat:
(A) adequatefireinsuranceexists.
(B) regularhardwaremaintenanceisperformed.
(C) offsitestorageoftransactionandmasterfilesexists.
(D) backupprocessingfacilitiesarefullytested.
CISAQuestions
BUSINESSCONTINUITYANDDISASTERRECOVERY6.1
696
WhichofthefollowingprocedureswouldBESTdeterminewhetheradequate
recovery/restartproceduresexist?
(A) Reviewingprogramcode
(B) Reviewingoperationsdocumentation
(C) TurningofftheUPS,thenthepower
(D) Reviewingprogramdocumentation
BUSINESSCONTINUITYANDDISASTERRECOVERY6.1
697
WhichofthefollowingfindingsshouldanISauditorbeMOSTconcernedaboutwhen
performinganauditofbackupandrecoveryandtheoffsitestoragevault?
(A) Therearethreeindividualswithakeytoenterthearea.
(B) Paperdocumentsarealsostoredintheoffsitevault.
(C) Datafilesthatarestoredinthevaultaresynchronized.
(D) Theoffsitevaultislocatedinaseparatefacility.
BUSINESSCONTINUITYANDDISASTERRECOVERY6.1
698
Onlinebankingtransactionsarebeingpostedtothedatabasewhenprocessingsuddenly
comestoahalt.TheintegrityofthetransactionprocessingisBESTensuredby:
(A) databaseintegritychecks.
(B) validationchecks.
(C) inputcontrols.
(D) databasecommitsandrollbacks.
BUSINESSCONTINUITYANDDISASTERRECOVERY6.1
699
Toprovideprotectionformediabackupstoredatanoffsitelocation,thestoragesite
shouldbe:
(A) locatedonadifferentfloorofthebuilding.
(B) easilyaccessiblebyeveryone.
(C) clearlylabeledforemergencyaccess.
(D) protectedfromunauthorizedaccess.
CISAQuestions
BUSINESSCONTINUITYANDDISASTERRECOVERY6.1
700
Whichofthefollowingensurestheavailabilityoftransactionsintheeventofadisaster?
(A) Sendtapeshourlycontainingtransactionsoffsite.
(B) Sendtapesdailycontainingtransactionsoffsite.
(C) Capturetransactionstomultiplestoragedevices.
(D) Transmittransactionsoffsiteinrealtime.
BUSINESSCONTINUITYANDDISASTERRECOVERY6.1
701
ISmanagementhasdecidedtoinstallalevel1RedundantArrayofInexpensiveDisks
(RAID)systeminallserverstocompensatefortheeliminationofoffsitebackups.TheIS
auditorshouldrecommend:
(A) upgradingtoalevel5RAID.
(B) increasingthefrequencyofonsitebackups.
(C) reinstatingtheoffsitebackups.
(D) establishingacoldsiteinasecurelocation.
BUSINESSCONTINUITYANDDISASTERRECOVERY6.1
702
InwhichofthefollowingsituationsisitMOSTappropriatetoimplementdatamirroring
astherecoverystrategy?
(A) Disastertoleranceishigh.
(B) Recoverytimeobjectiveishigh.
(C) Recoverypointobjectiveislow.
(D) Recoverypointobjectiveishigh.
BUSINESSCONTINUITYANDDISASTERRECOVERY6.1
703
NetworkDataManagementProtocol(NDMP)technologyshouldbeusedforbackupif:
(A) anetworkattachedstorage(NAS)applianceisrequired.
(B) theuseofTCP/IPmustbeavoided.
(C) filepermissionsthatcannotbehandledbylegacybackupsystemsmustbe
backedup.
(D) backupconsistencyoverseveralrelateddatavolumesmustbeensured.
CISAQuestions
BUSINESSCONTINUITYANDDISASTERRECOVERY6.1
704
Anorganizationcurrentlyusingtapebackupstakesonefullbackupweeklyand
incrementalbackupsdaily.Theyrecentlyaugmentedtheirtapebackupprocedureswitha
backuptodisksolution.Thisisappropriatebecause:
(A) fastsyntheticbackupsforoffsitestoragearesupported.
(B) backuptodiskisalwayssignificantlyfasterthanbackuptotape.
(C) tapelibrariesarenolongerneeded.
(D) datastorageondisksismorereliablethanontapes.
BUSINESSCONTINUITYANDDISASTERRECOVERY6.1
705
WhichofthefollowingshouldbetheMOSTimportantcriterioninevaluatingabackup
solutionforsensitivedatathatmustberetainedforalongperiodoftimedueto
regulatoryrequirements?
(A) Fullbackupwindow
(B) Mediacosts
(C) Restorewindow
(D) Mediareliability
BUSINESSCONTINUITYANDDISASTERRECOVERY6.1
706
Intheeventofadatacenterdisaster,whichofthefollowingwouldbetheMOST
appropriatestrategytoenableacompleterecoveryofacriticaldatabase?
(A) Dailydatabackuptotapeandstorageataremotesite
(B) Realtimereplicationtoaremotesite
(C) Harddiskmirroringtoalocalserver
(D) Realtimedatabackuptothelocalstorageareanetwork(SAN)
BUSINESSCONTINUITYANDDISASTERRECOVERY6.1
707
WhichofthefollowingbackuptechniquesistheMOSTappropriatewhenanorganization
requiresextremelygranulardatarestorepoints,asdefinedintherecoverypoint
objective(RPO)?
(A) Virtualtapelibraries
(B) Diskbasedsnapshots
(C) Continuousdatabackup
(D) Disktotapebackup
CISAQuestions
BUSINESSCONTINUITYANDDISASTERRECOVERY6.1
708
WhatistheBESTbackupstrategyforalargedatabasewithdatasupportingonlinesales?
(A) Weeklyfullbackupwithdailyincrementalbackup
(B) Dailyfullbackup
(C) Clusteredservers
(D) Mirroredharddisks
BUSINESSCONTINUITYANDDISASTERRECOVERY6.1
709
NEW2009
Duringanaudit,anISauditornotesthatanorganization'sbusinesscontinuityplan(BCP)
doesnotadequatelyaddressinformationconfidentialityduringarecoveryprocess.TheIS
auditorshouldrecommendthattheplanbemodifiedtoinclude:
(A) thelevelofinformationsecurityrequiredwhenbusinessrecoveryproceduresare
invoked.
(B) informationsecurityrolesandresponsibilitiesinthecrisismanagementstructure.
(C) informationsecurityresourcerequirements.
(D) changemanagementproceduresforinformationsecuritythatcouldaffect
businesscontinuityarrangements.
BUSINESSCONTINUITYANDDISASTERRECOVERY6.1
710
NEW2009
WhichofthefollowingistheGREATESTriskwhenstoragegrowthinacriticalfileserveris
notmanagedproperly?
(A) Backuptimewouldsteadilyincrease
(B) Backupoperationalcostwouldsignificantlyincrease
(C) Storageoperationalcostwouldsignificantlyincrease
(D) Serverrecoveryworkmaynotmeettherecoverytimeobjective(RTO)
BUSINESSCONTINUITYANDDISASTERRECOVERY6.1
711
NEW2009
WhichofthefollowingistheMOSTimportantconsiderationwhendefiningrecovery
pointobjectives(RPOs)?
(A) Minimumoperatingrequirements
(B) Acceptabledataloss
(C) Meantimebetweenfailures
(D) Acceptabletimeforrecovery
CISAQuestions
BUSINESSCONTINUITYANDDISASTERRECOVERY6.2
712
Astructuredwalkthroughtestofadisasterrecoveryplaninvolves:
(A) representativesfromeachofthefunctionalareascomingtogethertogooverthe
plan.
(B) allemployeeswhoparticipateinthedaytodayoperationscomingtogetherto
practiceexecutingtheplan.
(C) movingthesystemstothealternateprocessingsiteandperformingprocessing
operations.
(D) distributingcopiesoftheplantothevariousfunctionalareasforreview.
BUSINESSCONTINUITYANDDISASTERRECOVERY6.2
713
Inacontractwithahot,warmorcoldsite,contractualprovisionsshouldcoverwhichof
thefollowingconsiderations?
(A) Physicalsecuritymeasures
(B) Totalnumberofsubscribers
(C) Numberofsubscriberspermittedtouseasiteatonetime
(D) Referencesbyotherusers
BUSINESSCONTINUITYANDDISASTERRECOVERY6.2
714
WhichofthefollowingistheGREATESTconcernwhenanorganization'sbackupfacilityis
atawarmsite?
(A) Timelyavailabilityofhardware
(B) Availabilityofheat,humidityandairconditioningequipment
(C) Adequacyofelectricalpowerconnections
(D) Effectivenessofthetelecommunicationsnetwork
BUSINESSCONTINUITYANDDISASTERRECOVERY6.2
715
WhichofthefollowingrecoverystrategiesisMOSTappropriateforabusinesshaving
multipleofficeswithinaregionandalimitedrecoverybudget?
(A) Ahotsitemaintainedbythebusiness
(B) Acommercialcoldsite
(C) Areciprocalarrangementbetweenitsoffices
(D) Athirdpartyhotsite
CISAQuestions
BUSINESSCONTINUITYANDDISASTERRECOVERY6.2
716
ThePRIMARYpurposeofabusinessimpactanalysis(BIA)isto:
(A) provideaplanforresumingoperationsafteradisaster.
(B) identifytheeventsthatcouldimpactthecontinuityofanorganization's
operations.
(C) publicizethecommitmentoftheorganizationtophysicalandlogicalsecurity.
(D) providetheframeworkforaneffectivedisasterrecoveryplan.
BUSINESSCONTINUITYANDDISASTERRECOVERY6.2
717
Afterimplementationofadisasterrecoveryplan,predisasterandpostdisaster
operationalcostsforanorganizationwill:
(A) decrease.
(B) notchange(remainthesame).
(C) increase.
(D) increaseordecreasedependinguponthenatureofthebusiness.
BUSINESSCONTINUITYANDDISASTERRECOVERY6.2
718
WhichofthefollowingistheMOSTreasonableoptionforrecoveringanoncritical
system?
(A) Warmsite
(B) Mobilesite
(C) Hotsite
(D) Coldsite
BUSINESSCONTINUITYANDDISASTERRECOVERY6.2
719
Anorganizationhavinganumberofofficesacrossawidegeographicalareahas
developedadisasterrecoveryplan.Usingactualresources,whichofthefollowingisthe
MOSTcosteffectivetestofthedisasterrecoveryplan?
(A) Fulloperationaltest
(B) Preparednesstest
(C) Papertest
(D) Regressiontest
CISAQuestions
BUSINESSCONTINUITYANDDISASTERRECOVERY6.2
720
Anorganization'sdisasterrecoveryplanshouldaddressearlyrecoveryof:
(A) allinformationsystemsprocesses.
(B) allfinancialprocessingapplications.
(C) onlythoseapplicationsdesignatedbytheISmanager.
(D) processinginpriorityorder,asdefinedbybusinessmanagement.
BUSINESSCONTINUITYANDDISASTERRECOVERY6.2
721
Anadvantageoftheuseofhotsitesasabackupalternativeisthat:
(A) thecostsassociatedwithhotsitesarelow.
(B) hotsitescanbeusedforanextendedamountoftime.
(C) hotsitescanbemadereadyforoperationwithinashortperiodoftime.
(D) theydonotrequirethatequipmentandsystemssoftwarebecompatiblewiththe
primarysite.
BUSINESSCONTINUITYANDDISASTERRECOVERY6.2
722
Whichofthefollowingisapracticethatshouldbeincorporatedintotheplanfortesting
disasterrecoveryprocedures?
(A) Inviteclientparticipation.
(B) Involvealltechnicalstaff.
(C) Rotaterecoverymanagers.
(D) Installlocallystoredbackup.
BUSINESSCONTINUITYANDDISASTERRECOVERY6.2
723
Disasterrecoveryplanning(DRP)addressesthe:
(A) technologicalaspectofbusinesscontinuityplanning.
(B) operationalpieceofbusinesscontinuityplanning.
(C) functionalaspectofbusinesscontinuityplanning.
(D) overallcoordinationofbusinesscontinuityplanning.
CISAQuestions
BUSINESSCONTINUITYANDDISASTERRECOVERY6.2
724
AnISauditorconductingareviewofdisasterrecoveryplanning(DRP)atafinancial
processingorganizationhasdiscoveredthefollowing:
Theexistingdisasterrecoveryplanwascompiledtwoyearsearlierbya
systemsanalystintheorganization'sITdepartmentusingtransactionflow
projectionsfromtheoperationsdepartment.
TheplanwaspresentedtothedeputyCEOforapprovalandformalissue,but
itisstillawaitingtheirattention.
Theplanhasneverbeenupdated,testedorcirculatedtokeymanagement
andstaff,thoughinterviewsshowthateachwouldknowwhatactiontotake
foritsareaintheeventofadisruptiveincident.
TheISauditor'sreportshouldrecommendthat:
(A) thedeputyCEObecensuredfortheirfailuretoapprovetheplan.
(B) aboardofseniormanagersissetuptoreviewtheexistingplan.
(C) theexistingplanisapprovedandcirculatedtoallkeymanagementandstaff.
(D) amanagercoordinatesthecreationofaneworrevisedplanwithinadefinedtime
limit.
10
CISAQuestions
BUSINESSCONTINUITYANDDISASTERRECOVERY6.2
725
AnISauditorconductingareviewofdisasterrecoveryplanning(DRP)atafinancial
processingorganizationhasdiscoveredthefollowing:
Theexistingdisasterrecoveryplanwascompiledtwoyearsearlierbyasystems
analystintheorganization'sITdepartmentusingtransactionflowprojections
fromtheoperationsdepartment.
TheplanwaspresentedtothedeputyCEOforapprovalandformalissue,butitis
stillawaitinghis/herattention.
Theplanhasneverbeenupdated,testedorcirculatedtokeymanagementand
staff,thoughinterviewsshowthateachwouldknowwhatactiontotakeforits
areaintheeventofadisruptiveincident.
Thebasisofanorganization'sdisasterrecoveryplanistoreestablishliveprocessingatan
alternativesitewhereasimilar,butnotidentical,hardwareconfigurationisalready
established.AnISauditorshould:
(A) takenoactionasthelackofacurrentplanistheonlysignificantfinding.
(B) recommendthatthehardwareconfigurationateachsiteisidentical.
(C) performareviewtoverifythatthesecondconfigurationcansupportlive
processing.
(D) reportthatthefinancialexpenditureonthealternativesiteiswastedwithoutan
effectiveplan.
BUSINESSCONTINUITYANDDISASTERRECOVERY6.2
726
Disasterrecoveryplanning(DRP)foracompany'scomputersystemusuallyfocuseson:
(A) operationsturnoverprocedures.
(B) strategiclongrangeplanning.
(C) theprobabilitythatadisasterwilloccur.
(D) alternativeprocedurestoprocesstransactions.
BUSINESSCONTINUITYANDDISASTERRECOVERY6.2
727
TheMAINpurposeforperiodicallytestingoffsitefacilitiesisto:
(A) protecttheintegrityofthedatainthedatabase.
(B) eliminatetheneedtodevelopdetailedcontingencyplans.
(C) ensurethecontinuedcompatibilityofthecontingencyfacilities.
(D) ensurethatprogramandsystemdocumentationremainscurrent.
11
CISAQuestions
BUSINESSCONTINUITYANDDISASTERRECOVERY6.2
728
Alargechainofshopswithelectronicfundstransfer(EFT)atpointofsaledeviceshasa
centralcommunicationsprocessorforconnectingtothebankingnetwork.Whichofthe
followingistheBESTdisasterrecoveryplanforthecommunicationsprocessor?
(A) Offsitestorageofdailybackups
(B) Alternativestandbyprocessoronsite
(C) Installationofduplexcommunicationlinks
(D) Alternativestandbyprocessoratanothernetworknode
BUSINESSCONTINUITYANDDISASTERRECOVERY6.2
729
Facilitatingtelecommunicationscontinuitybyprovidingredundantcombinationsoflocal
carrierT1lines,microwavesand/orcoaxialcablestoaccessthelocalcommunication
loopis:
(A) lastmilecircuitprotection.
(B) longhaulnetworkdiversity.
(C) diverserouting.
(D) alternativerouting.
BUSINESSCONTINUITYANDDISASTERRECOVERY6.2
730
WhichofthefollowingrepresentstheGREATESTriskcreatedbyareciprocalagreement
fordisasterrecoverymadebetweentwocompanies?
(A) Developmentsmayresultinhardwareandsoftwareincompatibility.
(B) Resourcesmaynotbeavailablewhenneeded.
(C) Therecoveryplancannotbetested.
(D) Thesecurityinfrastructuresineachcompanymaybedifferent.
BUSINESSCONTINUITYANDDISASTERRECOVERY6.2
731
WhichofthefollowingwouldBESTensurecontinuityofawideareanetwork(WAN)
acrosstheorganization?
(A) Builtinalternativerouting
(B) Completingfullsystembackupdaily
(C) Arepaircontractwithaserviceprovider
(D) Aduplicatemachinealongsideeachserver
12
CISAQuestions
BUSINESSCONTINUITYANDDISASTERRECOVERY6.2
732
AnISauditorreviewinganorganization'sISdisasterrecoveryplanshouldverifythatitis:
(A) testedeverysixmonths.
(B) regularlyreviewedandupdated.
(C) approvedbythechiefexecutiveofficer(CEO).
(D) communicatedtoeverydepartmentheadintheorganization.
BUSINESSCONTINUITYANDDISASTERRECOVERY6.2
733
Thereareseveralmethodsofprovidingtelecommunicationscontinuity.Themethodof
routingtrafficthroughsplitcableorduplicatecablefacilitiesiscalled:
(A) alternativerouting.
(B) diverserouting.
(C) longhaulnetworkdiversity.
(D) lastmilecircuitprotection.
BUSINESSCONTINUITYANDDISASTERRECOVERY6.2
734
Theresponsibilitiesofadisasterrecoveryrelocationteaminclude:
(A) obtaining,packagingandshippingmediaandrecordstotherecoveryfacilities,as
wellasestablishingandoverseeinganoffsitestorageschedule.
(B) locatingarecoverysite,ifonehasnotbeenpredetermined,andcoordinatingthe
transportofcompanyemployeestotherecoverysite.
(C) managingtherelocationprojectandconductingamoredetailedassessmentof
thedamagetothefacilitiesandequipment.
(D) coordinatingtheprocessofmovingfromthehotsitetoanewlocationortothe
restoredoriginallocation.
BUSINESSCONTINUITYANDDISASTERRECOVERY6.2
735
Whilereviewingthebusinesscontinuityplanofanorganization,anISauditorobserved
thattheorganization'sdataandsoftwarefilesarebackeduponaperiodicbasis.Which
characteristicofaneffectiveplandoesthisdemonstrate?
(A) Deterrence
(B) Mitigation
(C) Recovery
(D) Response
13
CISAQuestions
BUSINESSCONTINUITYANDDISASTERRECOVERY6.2
736
Whichofthefollowingdisasterrecovery/continuityplancomponentsprovidesthe
GREATESTassuranceofrecoveryafteradisaster?
(A) Thealternatefacilitywillbeavailableuntiltheoriginalinformationprocessing
facilityisrestored.
(B) Usermanagementisinvolvedintheidentificationofcriticalsystemsandtheir
associatedcriticalrecoverytimes.
(C) Copiesoftheplanarekeptatthehomesofkeydecisionmakingpersonnel.
(D) Feedbackisprovidedtomanagementassuringthemthatthebusinesscontinuity
plansareindeedworkableandthattheproceduresarecurrent.
BUSINESSCONTINUITYANDDISASTERRECOVERY6.2
737
Whichofthefollowingmustexisttoensuretheviabilityofaduplicateinformation
processingfacility?
(A) Thesiteisneartheprimarysitetoensurequickandefficientrecovery.
(B) Thesitecontainsthemostadvancedhardwareavailable.
(C) Theworkloadoftheprimarysiteismonitoredtoensureadequatebackupis
available.
(D) Thehardwareistestedwhenitisinstalledtoensureitisworkingproperly.
BUSINESSCONTINUITYANDDISASTERRECOVERY6.2
738
Anoffsiteinformationprocessingfacilitywithelectricalwiring,airconditioningand
flooring,butnocomputerorcommunicationsequipment,isa:
(A) coldsite.
(B) warmsite.
(C) dialupsite.
(D) duplicateprocessingfacility.
BUSINESSCONTINUITYANDDISASTERRECOVERY6.2
739
Adisasterrecoveryplanforanorganizationshould:
(A) reducethelengthoftherecoverytimeandthecostofrecovery.
(B) increasethelengthoftherecoverytimeandthecostofrecovery.
(C) reducethedurationoftherecoverytimeandincreasethecostofrecovery.
(D) affectneithertherecoverytimenorthecostofrecovery.
14
CISAQuestions
BUSINESSCONTINUITYANDDISASTERRECOVERY6.2
740
Adisasterrecoveryplanforanorganization'sfinancialsystemspecifiesthattherecovery
pointobjective(RPO)isnodatalossandtherecoverytimeobjective(RTO)is72hours.
WhichofthefollowingistheMOSTcosteffectivesolution?
(A) Ahotsitethatcanbeoperationalineighthourswithasynchronousbackupofthe
transactionlogs
(B) Distributeddatabasesystemsinmultiplelocationsupdatedasynchronously
(C) Synchronousupdatesofthedataandstandbyactivesystemsinahotsite
(D) Synchronousremotecopyofthedatainawarmsitethatcanbeoperationalin48
hours
BUSINESSCONTINUITYANDDISASTERRECOVERY6.2
741
Afinancialinstitutionthatprocessesmillionsoftransactionseachdayhasacentral
communicationsprocessor(switch)forconnectingtoautomatedtellermachines(ATMs).
WhichofthefollowingwouldbetheBESTcontingencyplanforthecommunications
processor?
(A) Reciprocalagreementwithanotherorganization
(B) Alternateprocessorinthesamelocation
(C) Alternateprocessoratanothernetworknode
(D) Installationofduplexcommunicationlinks
BUSINESSCONTINUITYANDDISASTERRECOVERY6.2
742
Thecostofongoingoperationswhenadisasterrecoveryplanisinplace,comparedtonot
havingadisasterrecoveryplan,willMOSTlikely:
(A) increase.
(B) decrease.
(C) remainthesame.
(D) beunpredictable.
BUSINESSCONTINUITYANDDISASTERRECOVERY6.2
743
WhichofthefollowingtasksshouldbeperformedFIRSTwhenpreparingadisaster
recoveryplan?
(A) Developarecoverystrategy.
(B) Performabusinessimpactanalysis.
(C) Mapsoftwaresystems,hardwareandnetworkcomponents.
(D) Appointrecoveryteamswithdefinedpersonnel,rolesandhierarchy.
15
CISAQuestions
BUSINESSCONTINUITYANDDISASTERRECOVERY6.2
744
WhichofthefollowingprovidestheBESTevidenceofanorganization'sdisasterrecovery
readiness?
(A) Adisasterrecoveryplan
(B) Customerreferencesforthealternatesiteprovider
(C) Processesformaintainingthedisasterrecoveryplan
(D) Resultsoftestsanddrills
BUSINESSCONTINUITYANDDISASTERRECOVERY6.2
745
WhichofthefollowingistheBESTmethodfordeterminingthecriticalityofeach
applicationsystemintheproductionenvironment?
(A) Interviewtheapplicationprogrammers.
(B) Performagapanalysis.
(C) Reviewthemostrecentapplicationaudits.
(D) Performabusinessimpactanalysis.
BUSINESSCONTINUITYANDDISASTERRECOVERY6.2
746
Ahotsiteshouldbeimplementedasarecoverystrategywhenthe:
(A) disastertoleranceislow.
(B) recoverypointobjective(RPO)ishigh.
(C) recoverytimeobjective(RTO)ishigh.
(D) disastertoleranceishigh.
BUSINESSCONTINUITYANDDISASTERRECOVERY6.2
747
Anorganizationhasimplementedadisasterrecoveryplan.Whichofthefollowingsteps
shouldbecarriedoutnext?
(A) Obtainseniormanagementsponsorship.
(B) Identifybusinessneeds.
(C) Conductapapertest.
(D) Performasystemrestoretest.
16
CISAQuestions
BUSINESSCONTINUITYANDDISASTERRECOVERY6.2
748
Whenauditingadisasterrecoveryplanforacriticalbusinessarea,anISauditorfindsthat
itdoesnotcoverallthesystems.WhichofthefollowingistheMOSTappropriateaction
fortheISauditor?
(A) Alertmanagementandevaluatetheimpactofnotcoveringallsystems.
(B) Canceltheaudit.
(C) Completetheauditofthesystemscoveredbytheexistingdisasterrecoveryplan.
(D) Postponetheaudituntilthesystemsareaddedtothedisasterrecoveryplan.
BUSINESSCONTINUITYANDDISASTERRECOVERY6.2
749
WhichofthefollowingshouldbeofMOSTconcerntoanISauditorreviewingtheBCP?
(A) Thedisasterlevelsarebasedonscopesofdamagedfunctions,butnoton
duration.
(B) Thedifferencebetweenlowleveldisasterandsoftwareincidentsisnotclear.
(C) TheoverallBCPisdocumented,butdetailedrecoverystepsarenotspecified.
(D) Theresponsibilityfordeclaringadisasterisnotidentified.
BUSINESSCONTINUITYANDDISASTERRECOVERY6.2
750
Ofthefollowingalternatives,theFIRSTapproachtodevelopingadisasterrecovery
strategywouldbetoassesswhether:
(A) allthreatscanbecompletelyremoved.
(B) acosteffective,builtinresiliencecanbeimplemented.
(C) therecoverytimeobjectivecanbeoptimized.
(D) thecostofrecoverycanbeminimized.
BUSINESSCONTINUITYANDDISASTERRECOVERY6.2
751
Anorganizationhasanumberofbranchesacrossawidegeographicalarea.Toensure
thatallaspectsofthedisasterrecoveryplanareevaluatedinacosteffectivemanner,an
ISauditorshouldrecommendtheuseofa:
(A) datarecoverytest.
(B) fulloperationaltest.
(C) posttest.
(D) preparednesstest.
17
CISAQuestions
BUSINESSCONTINUITYANDDISASTERRECOVERY6.2
752
Iftherecoverytimeobjective(RTO)increases:
(A) thedisastertoleranceincreases.
(B) thecostofrecoveryincreases.
(C) acoldsitecannotbeused.
(D) thedatabackupfrequencyincreases.
BUSINESSCONTINUITYANDDISASTERRECOVERY6.2
753
DuetochangesinIT,thedisasterrecoveryplanofalargeorganizationhasbeenchanged.
WhatisthePRIMARYriskifthenewplanisnottested?
(A) Catastrophicserviceinterruption
(B) Highconsumptionofresources
(C) Totalcostoftherecoverymaynotbeminimized
(D) Usersandrecoveryteamsmayfaceseveredifficultieswhenactivatingtheplan
BUSINESSCONTINUITYANDDISASTERRECOVERY6.2
754
Whendevelopingadisasterrecoveryplan,thecriteriafordeterminingtheacceptable
downtimeshouldbethe:
(A) annualizedlossexpectancy(ALE).
(B) servicedeliveryobjective.
(C) quantityoforphandata.
(D) maximumtolerableoutage.
BUSINESSCONTINUITYANDDISASTERRECOVERY6.2
755
Alowerrecoverytimeobjective(RTO)resultsin:
(A) higherdisastertolerance.
(B) highercost.
(C) widerinterruptionwindows.
(D) morepermissivedataloss.
18
CISAQuestions
BUSINESSCONTINUITYANDDISASTERRECOVERY6.2
756
Regardingadisasterrecoveryplan,theroleofanISauditorshouldinclude:
(A) identifyingcriticalapplications.
(B) determiningtheexternalserviceprovidersinvolvedinarecoverytest.
(C) observingthetestsofthedisasterrecoveryplan.
(D) determiningthecriteriaforestablishingarecoverytimeobjective(RTO).
BUSINESSCONTINUITYANDDISASTERRECOVERY6.2
757
NEW2009
Duringadisasterrecoverytest,anISauditorobservesthattheperformanceofthe
disasterrecoverysite'sserverisslow.Tofindtherootcauseofthis,theISauditorshould
FIRSTreviewthe:
(A) eventerrorloggeneratedatthedisasterrecoverysite.
(B) disasterrecoverytestplan.
(C) disasterrecoveryplan(DRP).
(D) configurationsandalignmentoftheprimaryanddisasterrecoverysites.
BUSINESSCONTINUITYANDDISASTERRECOVERY6.2
758
NEW2009
Anorganizationhasarecoverytimeobjective(RTO)equaltozeroandarecoverypoint
objective(RPO)closeto1minuteforacriticalsystem.Thisimpliesthatthesystemcan
tolerate:
(A) adatalossofupto1minute,buttheprocessingmustbecontinuous.
(B) a1minuteprocessinginterruptionbutcannottolerateanydataloss.
(C) aprocessinginterruptionof1minuteormore.
(D) bothadatalossandaprocessinginterruptionlongerthan1minute.
BUSINESSCONTINUITYANDDISASTERRECOVERY6.2
759
NEW2009
WhichofthefollowingissuesshouldbetheGREATESTconcerntotheISauditorwhen
reviewinganITdisasterrecoverytest?
(A) Duetothelimitedtesttimewindow,onlythemostessentialsystemsweretested.
Theothersystemsweretestedseparatelyduringtherestoftheyear.
(B) Duringthetestitwasnoticedthatsomeofthebackupsystemsweredefectiveor
notworking,causingthetestofthesesystemstofail.
(C) Theprocedurestoshutdownandsecuretheoriginalproductionsitebefore
startingthebackupsiterequiredfarmoretimethanplanned.
(D) Everyyear,thesameemployeesperformthetest.Therecoveryplandocuments
arenotusedsinceeverystepiswellknownbyallparticipants.
19
CISAQuestions
BUSINESSCONTINUITYANDDISASTERRECOVERY6.2
760
NEW2009
Thefrequentupdatingofwhichofthefollowingiskeytothecontinuedeffectivenessofa
disasterrecoveryplan(DRP)?
(A) Contactinformationofkeypersonnel
(B) Serverinventorydocumentation
(C) Individualrolesandresponsibilities
(D) Proceduresfordeclaringadisaster
BUSINESSCONTINUITYANDDISASTERRECOVERY6.2
761
NEW2009
AlivetestofamutualagreementforITsystemrecoveryhasbeencarriedout,includinga
fourhourtestofintensiveusagebythebusinessunits.Thetesthasbeensuccessful,but
givesonlypartialassurancethatthe:
(A) systemandtheIToperationsteamcansustainoperationsintheemergency
environment.
(B) resourcesandtheenvironmentcouldsustainthetransactionload.
(C) connectivitytotheapplicationsattheremotesitemeetsresponsetime
requirements.
(D) workflowofactualbusinessoperationscanusetheemergencysystemincaseofa
disaster.
BUSINESSCONTINUITYANDDISASTERRECOVERY6.2
762
NEW2009
Toaddressanorganization'sdisasterrecoveryrequirements,backupintervalsshouldnot
exceedthe:
(A) servicelevelobjective(SLO).
(B) recoverytimeobjective(RTO).
(C) recoverypointobjective(RPO).
(D) maximumacceptableoutage(MAO).
BUSINESSCONTINUITYANDDISASTERRECOVERY6.3
763
WhichofthefollowingwouldhavetheHIGHESTpriorityinabusinesscontinuityplan
(BCP)?
(A) Resumingcriticalprocesses
(B) Recoveringsensitiveprocesses
(C) Restoringthesite
(D) Relocatingoperationstoanalternativesite
20
CISAQuestions
BUSINESSCONTINUITYANDDISASTERRECOVERY6.3
764
Aftercompletingthebusinessimpactanalysis(BIA),whatisthenextstepinthebusiness
continuityplanningprocess?
(A) Testandmaintaintheplan.
(B) Developaspecificplan.
(C) Developrecoverystrategies.
(D) Implementtheplan.
BUSINESSCONTINUITYANDDISASTERRECOVERY6.3
765
Whichofthefollowingisanappropriatetestmethodtoapplytoabusinesscontinuity
plan(BCP)?
(A) Pilot
(B) Paper
(C) Unit
(D) System
BUSINESSCONTINUITYANDDISASTERRECOVERY6.3
766
AnISauditorhasauditedabusinesscontinuityplan(BCP).Whichofthefollowingfindings
istheMOSTcritical?
(A) Nonavailabilityofanalternateprivatebranchexchange(PBX)system
(B) Absenceofabackupforthenetworkbackbone
(C) Lackofbackupsystemsfortheusers'PCs
(D) Failureoftheaccesscardsystem
BUSINESSCONTINUITYANDDISASTERRECOVERY6.3
767
Aspartofthebusinesscontinuityplanningprocess,whichofthefollowingshouldbe
identifiedFIRSTinthebusinessimpactanalysis?
(A) Organizationalrisks,suchassinglepointoffailureandinfrastructurerisk
(B) Threatstocriticalbusinessprocesses
(C) Criticalbusinessprocessesforascertainingthepriorityforrecovery
(D) Resourcesrequiredforresumptionofbusiness
21
CISAQuestions
BUSINESSCONTINUITYANDDISASTERRECOVERY6.3
768
WhichofthefollowingactivitiesshouldthebusinesscontinuitymanagerperformFIRST
afterthereplacementofhardwareattheprimaryinformationprocessingfacility?
(A) Verifycompatibilitywiththehotsite.
(B) Reviewtheimplementationreport.
(C) Performawalkthroughofthedisasterrecoveryplan.
(D) UpdatetheISassetsinventory.
BUSINESSCONTINUITYANDDISASTERRECOVERY6.3
769
WhichofthefollowingwouldcontributeMOSTtoaneffectivebusinesscontinuityplan
(BCP)?
(A) Documentiscirculatedtoallinterestedparties
(B) Planninginvolvesalluserdepartments
(C) Approvalbyseniormanagement
(D) AuditbyanexternalISauditor
BUSINESSCONTINUITYANDDISASTERRECOVERY6.3
770
Todevelopasuccessfulbusinesscontinuityplan,enduserinvolvementiscriticalduring
whichofthefollowingphases?
(A) Businessrecoverystrategy
(B) Detailedplandevelopment
(C) Businessimpactanalysis(BIA)
(D) Testingandmaintenance
BUSINESSCONTINUITYANDDISASTERRECOVERY6.3
771
WhichofthefollowingwouldanISauditorconsidertobetheMOSTimportanttoreview
whenconductingabusinesscontinuityaudit?
(A) Ahotsiteiscontractedforandavailableasneeded.
(B) Abusinesscontinuitymanualisavailableandcurrent.
(C) Insurancecoverageisadequateandpremiumsarecurrent.
(D) Mediabackupsareperformedonatimelybasisandstoredoffsite.
22
CISAQuestions
BUSINESSCONTINUITYANDDISASTERRECOVERY6.3
772
ThePRIMARYobjectiveofbusinesscontinuityanddisasterrecoveryplansshouldbeto:
(A) safeguardcriticalISassets.
(B) provideforcontinuityofoperations.
(C) minimizethelosstoanorganization.
(D) protecthumanlife.
BUSINESSCONTINUITYANDDISASTERRECOVERY6.3
773
Afterafulloperationalcontingencytest,anISauditorperformsareviewoftherecovery
steps.Theauditorconcludesthatthetimeittookforthetechnologicalenvironmentand
systemstoreturntofullfunctioningexceededtherequiredcriticalrecoverytime.Which
ofthefollowingshouldtheauditorrecommend?
(A) Performanintegralreviewoftherecoverytasks.
(B) Broadentheprocessingcapacitytogainrecoverytime.
(C) Makeimprovementsinthefacility'scirculationstructure.
(D) Increasetheamountofhumanresourcesinvolvedintherecovery.
BUSINESSCONTINUITYANDDISASTERRECOVERY6.3
774
Whichofthefollowingisacontinuityplantestthatusesactualresourcestosimulatea
systemcrashtocosteffectivelyobtainevidenceabouttheplan'seffectiveness?
(A) Papertest
(B) Posttest
(C) Preparednesstest
(D) Walkthrough
BUSINESSCONTINUITYANDDISASTERRECOVERY6.3
775
Whiledesigningthebusinesscontinuityplan(BCP)foranairlinereservationsystem,the
MOSTappropriatemethodofdatatransfer/backupatanoffsitelocationwouldbe:
(A) shadowfileprocessing.
(B) electronicvaulting.
(C) harddiskmirroring.
(D) hotsiteprovisioning.
23
CISAQuestions
BUSINESSCONTINUITYANDDISASTERRECOVERY6.3
776
Dependingonthecomplexityofanorganization'sbusinesscontinuityplan(BCP),theplan
maybedevelopedasasetofmorethanoneplantoaddressvariousaspectsofbusiness
continuityanddisasterrecovery.Insuchanenvironment,itisessentialthat:
(A) eachplanisconsistentwithoneanother.
(B) allplansareintegratedintoasingleplan.
(C) eachplanisdependentononeanother.
(D) thesequenceforimplementationofallplansisdefined.
BUSINESSCONTINUITYANDDISASTERRECOVERY6.3
777
DuringabusinesscontinuityauditanISauditorfoundthatthebusinesscontinuityplan
(BCP)coveredonlycriticalprocesses.TheISauditorshould:
(A) recommendthattheBCPcoverallbusinessprocesses.
(B) assesstheimpactoftheprocessesnotcovered.
(C) reportthefindingstotheITmanager.
(D) redefinecriticalprocesses.
BUSINESSCONTINUITYANDDISASTERRECOVERY6.3
778
AnISauditornotedthatanorganizationhadadequatebusinesscontinuityplans(BCPs)
foreachindividualprocess,butnocomprehensiveBCP.WhichwouldbetheBESTcourse
ofactionfortheISauditor?
(A) RecommendthatanadditionalcomprehensiveBCPbedeveloped.
(B) DeterminewhethertheBCPsareconsistent.
(C) AccepttheBCPsaswritten.
(D) RecommendthecreationofasingleBCP.
BUSINESSCONTINUITYANDDISASTERRECOVERY6.3
779
Whendevelopingabusinesscontinuityplan(BCP),whichofthefollowingtoolsshouldbe
usedtogainanunderstandingoftheorganization'sbusinessprocesses?
(A) Businesscontinuityselfaudit
(B) Resourcerecoveryanalysis
(C) Riskassessment
(D) Gapanalysis
24
CISAQuestions
BUSINESSCONTINUITYANDDISASTERRECOVERY6.3
780
Duringanauditofabusinesscontinuityplan(BCP),anISauditorfoundthat,althoughall
departmentswerehousedinthesamebuilding,eachdepartmenthadaseparateBCP.
TheISauditorrecommendedthattheBCPsbereconciled.Whichofthefollowingareas
shouldbereconciledFIRST?
(A) Evacuationplan
(B) Recoverypriorities
(C) Backupstorages
(D) Calltree
BUSINESSCONTINUITYANDDISASTERRECOVERY6.3
781
Managementconsideredtwoprojectionsforitsbusinesscontinuityplan;planAwithtwo
monthstorecoverandplanBwitheightmonthstorecover.Therecoveryobjectivesare
thesameinbothplans.ItisreasonabletoexpectthatplanBprojectedhigher:
(A) downtimecosts.
(B) resumptioncosts.
(C) recoverycosts.
(D) walkthroughcosts.
BUSINESSCONTINUITYANDDISASTERRECOVERY6.3
782
Theoptimumbusinesscontinuitystrategyforanentityisdeterminedbythe:
(A) lowestdowntimecostandhighestrecoverycost.
(B) lowestsumofdowntimecostandrecoverycost.
(C) lowestrecoverycostandhighestdowntimecost.
(D) averageofthecombineddowntimeandrecoverycost.
BUSINESSCONTINUITYANDDISASTERRECOVERY6.3
783
ThePRIMARYobjectiveoftestingabusinesscontinuityplanisto:
(A) familiarizeemployeeswiththebusinesscontinuityplan.
(B) ensurethatallresidualrisksareaddressed.
(C) exerciseallpossibledisasterscenarios.
(D) identifylimitationsofthebusinesscontinuityplan.
25
CISAQuestions
BUSINESSCONTINUITYANDDISASTERRECOVERY6.3
784
Indeterminingtheacceptabletimeperiodfortheresumptionofcriticalbusiness
processes:
(A) onlydowntimecostsneedtobeconsidered.
(B) recoveryoperationsshouldbeanalyzed.
(C) bothdowntimecostsandrecoverycostsneedtobeevaluated.
(D) indirectdowntimecostsshouldbeignored.
BUSINESSCONTINUITYANDDISASTERRECOVERY6.3
785
Intheeventofadisruptionordisaster,whichofthefollowingtechnologiesprovidesfor
continuousoperations?
(A) Loadbalancing
(B) Faulttoleranthardware
(C) Distributedbackups
(D) Highavailabilitycomputing
BUSINESSCONTINUITYANDDISASTERRECOVERY6.3
786
WhichofthefollowingwouldbeMOSTimportantforanISauditortoverifywhen
conductingabusinesscontinuityaudit?
(A) Databackupsareperformedonatimelybasis
(B) Arecoverysiteiscontractedforandavailableasneeded
(C) Humansafetyproceduresareinplace
(D) Insurancecoverageisadequateandpremiumsarecurrent
BUSINESSCONTINUITYANDDISASTERRECOVERY6.3
787
Whichofthefollowinginsurancetypesprovideforalossarisingfromfraudulentactsby
employees?
(A) Businessinterruption
(B) Fidelitycoverage
(C) Errorsandomissions
(D) Extraexpense
26
CISAQuestions
BUSINESSCONTINUITYANDDISASTERRECOVERY6.3
788
TheBESTmethodforassessingtheeffectivenessofabusinesscontinuityplanistoreview
the:
(A) plansandcomparethemtoappropriatestandards.
(B) resultsfromprevioustests.
(C) emergencyproceduresandemployeetraining.
(D) offsitestorageandenvironmentalcontrols.
BUSINESSCONTINUITYANDDISASTERRECOVERY6.3
789
Withrespecttobusinesscontinuitystrategies,anISauditorinterviewskeystakeholders
inanorganizationtodeterminewhethertheyunderstandtheirrolesandresponsibilities.
TheISauditorisattemptingtoevaluatethe:
(A) clarityandsimplicityofthebusinesscontinuityplans.
(B) adequacyofthebusinesscontinuityplans.
(C) effectivenessofthebusinesscontinuityplans.
(D) abilityofISandenduserpersonneltorespondeffectivelyinemergencies.
BUSINESSCONTINUITYANDDISASTERRECOVERY6.3
790
Duringthedesignofabusinesscontinuityplan,thebusinessimpactanalysis(BIA)
identifiescriticalprocessesandsupportingapplications.ThiswillPRIMARILYinfluence
the:
(A) responsibilityformaintainingthebusinesscontinuityplan.
(B) criteriaforselectingarecoverysiteprovider.
(C) recoverystrategy.
(D) responsibilitiesofkeypersonnel.
BUSINESSCONTINUITYANDDISASTERRECOVERY6.3
791
Duringareviewofabusinesscontinuityplan,anISauditornoticedthatthepointat
whichasituationisdeclaredtobeacrisishasnotbeendefined.TheMAJORrisk
associatedwiththisisthat:
(A) assessmentofthesituationmaybedelayed.
(B) executionofthedisasterrecoveryplancouldbeimpacted.
(C) notificationoftheteamsmightnotoccur.
(D) potentialcrisisrecognitionmightbeineffective.
27
CISAQuestions
BUSINESSCONTINUITYANDDISASTERRECOVERY6.3
792
Anorganizationhasjustcompletedtheirannualriskassessment.Regardingthebusiness
continuityplan,whatshouldanISauditorrecommendasthenextstepforthe
organization?
(A) Reviewandevaluatethebusinesscontinuityplanforadequacy
(B) Performafullsimulationofthebusinesscontinuityplan
(C) Trainandeducateemployeesregardingthebusinesscontinuityplan
(D) Notifycriticalcontactsinthebusinesscontinuityplan
BUSINESSCONTINUITYANDDISASTERRECOVERY6.3
793
Integratingbusinesscontinuityplanning(BCP)intoanITprojectaidsin:
(A) theretrofittingofthebusinesscontinuityrequirements.
(B) thedevelopmentofamorecomprehensivesetofrequirements.
(C) thedevelopmentofatransactionflowchart.
(D) ensuringtheapplicationmeetstheuser'sneeds.
BUSINESSCONTINUITYANDDISASTERRECOVERY6.3
794
Whileobservingafullsimulationofthebusinesscontinuityplan,anISauditornotices
thatthenotificationsystemswithintheorganizationalfacilitiescouldbeseverely
impactedbyinfrastructuraldamage.TheBESTrecommendationtheISauditorcan
providetotheorganizationistoensure:
(A) thesalvageteamistrainedtousethenotificationsystem.
(B) thenotificationsystemprovidesfortherecoveryofthebackup.
(C) redundanciesarebuiltintothenotificationsystem.
(D) thenotificationsystemsarestoredinavault.
BUSINESSCONTINUITYANDDISASTERRECOVERY6.3
795
Theactivationofanenterprise'sbusinesscontinuityplanshouldbebasedon
predeterminedcriteriathataddressthe:
(A) durationoftheoutage.
(B) typeofoutage.
(C) probabilityoftheoutage.
(D) causeoftheoutage.
28
CISAQuestions
BUSINESSCONTINUITYANDDISASTERRECOVERY6.3
796
NEW2009
Anorganizationhasoutsourceditswideareanetwork(WAN)toathirdpartyservice
provider.Underthesecircumstances,whichofthefollowingisthePRIMARYtasktheIS
auditorshouldperformduringanauditofbusinesscontinuity(BCP)anddisasterrecovery
planning(DRP)?
(A) Reviewwhethertheserviceprovider'sBCPprocessisalignedwiththe
organization'sBCPandcontractualobligations.
(B) Reviewwhethertheservicelevelagreement(SLA)containsapenaltyclausein
caseoffailuretomeetthelevelofserviceincaseofadisaster.
(C) Reviewthemethodologyadoptedbytheorganizationinchoosingtheservice
provider.
(D) Reviewtheaccreditationofthethirdpartyserviceprovider'sstaff.
BUSINESSCONTINUITYANDDISASTERRECOVERY6.3
797
NEW2009
AnISauditorcanverifythatanorganization'sbusinesscontinuityplan(BCP)iseffective
byreviewingthe:
(A) alignmentoftheBCPwithindustrybestpractices.
(B) resultsofbusinesscontinuitytestsperformedbyISandenduserpersonnel.
(C) offsitefacility,itscontents,securityandenvironmentalcontrols.
(D) annualfinancialcostoftheBCPactivitiesversustheexpectedbenefitof
implementationoftheplan.
BUSINESSCONTINUITYANDDISASTERRECOVERY6.3
798
NEW2009
Tooptimizeanorganization'sbusinesscontingencyplan(BCP),anISauditorshould
recommendconductingabusinessimpactanalysis(BIA)inordertodetermine:
(A) thebusinessprocessesthatgeneratethemostfinancialvaluefortheorganization
andthereforemustberecoveredfirst.
(B) theprioritiesandorderforrecoverytoensurealignmentwiththeorganization's
businessstrategy.
(C) thebusinessprocessesthatmustberecoveredfollowingadisastertoensurethe
organization'ssurvival.
(D) theprioritiesandorderofrecoverywhichwillrecoverthegreatestnumberof
systemsintheshortesttimeframe.
29
CISAQuestions
BUSINESSCONTINUITYANDDISASTERRECOVERY6.3
799
NEW2009
Afinancialservicesorganizationisdevelopinganddocumentingbusinesscontinuity
measures.InwhichofthefollowingcaseswouldanISauditorMOSTlikelyraiseanissue?
(A) Theorganizationusesgoodpracticeguidelinesinsteadofindustrystandardsand
reliesonexternaladvisorstoensuretheadequacyofthemethodology.
(B) Thebusinesscontinuitycapabilitiesareplannedaroundacarefullyselectedsetof
scenarioswhichdescribeeventsthatmighthappenwithareasonableprobability.
(C) Therecoverytimeobjectives(RTOs)donottakeITdisasterrecoveryconstraints
intoaccount,suchaspersonnelorsystemdependenciesduringtherecovery
phase.
(D) Theorganizationplanstorentasharedalternatesitewithemergencyworkplaces
whichhasonlyenoughroomforhalfofthenormalstaff.
BUSINESSCONTINUITYANDDISASTERRECOVERY6.3
800
NEW2009
Amediumsizedorganization,whoseITdisasterrecoverymeasureshavebeeninplace
andregularlytestedforyears,hasjustdevelopedaformalbusinesscontinuityplan(BCP).
AbasicBCPtabletopexercisehasbeenperformedsuccessfully.Whichtestingshouldan
ISauditorrecommendbeperformedNEXTtoverifytheadequacyofthenewBCP?
(A) Fullscaletestwithrelocationofalldepartments,includingIT,tothecontingency
site
(B) Walkthroughtestofaseriesofpredefinedscenarioswithallcriticalpersonnel
involved
(C) ITdisasterrecoverytestwithbusinessdepartmentsinvolvedintestingthecritical
applications
(D) FunctionaltestofascenariowithlimitedITinvolvement
30