Back to Security in the cloud

Disaster Recovery and Business Continuity in Cloud

5 minutes 5 Questions

Disaster Recovery (DR) and Business Continuity (BC) in the cloud are essential for ensuring the availability, performance, and accessibility of an organization's resources in the event of a disaster or service disruption. In the context of a CISSP course, understanding cloud-based DR and BC strateg…

Test mode:
Start practice test
CISSP - Disaster Recovery and Business Continuity in Cloud Example Questions

Test your knowledge of Disaster Recovery and Business Continuity in Cloud

Question 1

Which cloud-based disaster recovery approach is most suitable for an organization that requires near-zero data loss and minimal downtime?

Correct Answer: Multi-region active-active deployment

The most suitable cloud-based disaster recovery approach for an organization requiring near-zero data loss and minimal downtime is a multi-region active-active deployment. This approach offers the following benefits: 1. Near-zero data loss: Data is continuously replicated across multiple regions in real-time. 2. Minimal downtime: Applications and services run simultaneously in multiple regions, allowing for immediate failover in case of a disaster. 3. High availability: The active-active setup ensures that the system remains operational even if one region experiences an outage. 4. Load balancing: Traffic can be distributed across regions, improving performance and reducing the risk of overload. The other options are less suitable for the given requirements: Pilot light with daily data replication does not provide near-zero data loss, as data is only replicated daily. This could result in significant data loss in case of a disaster. Warm standby with hourly snapshots also falls short of the near-zero data loss requirement. Hourly snapshots mean that up to an hour's worth of data could be lost in a disaster scenario. Cold site with weekly backups is the least suitable option for the given requirements. It offers neither near-zero data loss nor minimal downtime. Recovery time would be significant, and data loss could be substantial.

Question 2

A company is using cloud-based infrastructure. During the annual review, the company needs to ensure their DR and BCP strategies are aligned with the cloud provider. What is the best approach?

Correct Answer: Review the cloud provider's SLA and DR policies

To ensure your DR and BCP strategies are aligned with the cloud provider, it's necessary to review the provider's SLA and DR policies. This allows you to understand what measures they have in place and ensure your strategies are in alignment. Ignoring or assuming anything about the provider's policies could lead to inadequate protection.

Question 3

A manufacturing company's cloud environment suffers a data breach. What should they do after restoring operations and addressing the vulnerability?

Correct Answer: Update the Business Continuity Plan (BCP)

After resolving the issue and restoring operations, it's important to update the Business Continuity Plan (BCP) to reflect the changes made and lessons learned. Relying on the cloud provider without ensuring the BCP is updated can expose the company to future risks. Updating the BCP strengthens the organization's security posture.

More Disaster Recovery and Business Continuity in Cloud questions
12 questions (total)
Start 12 question test