Back to Business Continuity and Disaster Recovery

Disaster Recovery

5 minutes 5 Questions

Disaster Recovery (DR) is a subset of Business Continuity that focuses on restoring an organization's IT infrastructure and services following a disaster or significant outage. The objective of disaster recovery is to minimize downtime and ensure the availability of critical systems and data. A comprehensive disaster recovery plan includes the identification of key IT assets, setting recovery time objectives (RTO), defining recovery point objectives (RPO), creating data backup and restoration procedures, having a failover strategy in place, and implementing proper security measures. DR planning also involves conducting regular tests and simulations to measure the effectiveness of the plan, refining the processes over time to improve response capabilities.

Guide: Understanding and Answering Questions on Disaster Recovery in Exams

Disaster Recovery is a critical aspect of any organization's business continuity plan. It outlines activities and procedures that must be carried out in the event of a calamity or catastrophic failure, with the ultimate aim of quickly restoring normal operations.

Why is it important?
Its importance lies in the potential loss of revenues and reputation an organization could experience if its essential services and functions can't be restored in a timely manner.

How does it work?
Disaster recovery operates on a plan called a Disaster Recovery Plan (DRP). This includes steps like identifying critical IT systems and services, planning for potential hazards, documenting recovery procedures, and frequently testing and updating the plan.

Exam Tips: Answering Questions on Disaster Recovery:

  • Understand the essentials of DRP. Know what it includes and why it is crucial for business continuity.
  • Be able to differentiate between disaster recovery and business continuity. Remember, disaster recovery is a subset of business continuity focusing on the IT and data-centric areas of a business.
  • Know different types of disasters - natural, human-induced, and technical. These categories help you to understand the scope of Disaster Recovery.
  • In essay type questions, always start by defining the disaster recovery, its importance, and then continue with the concepts and examples.
  • Practical application questions may ask you to outline a basic DRP for a given scenario. Focus on risk assessment, essential functions, backup plans, and recovery.

Test mode:
Start practice test
CompTIA Security+ - Business Continuity and Disaster Recovery Example Questions

Test your knowledge of Amazon Simple Storage Service (S3)

Question 1

During a ransomware attack, a company's data has been encrypted. Which of the following steps should be taken first in the disaster recovery process?

Correct Answer: Isolate affected systems

The best first step in the disaster recovery process during a ransomware attack is to isolate affected systems. This is crucial because:

1. It prevents the ransomware from spreading further within the network.
2. It limits the potential damage and data loss.
3. It allows security teams to assess the situation and develop a recovery plan.

Restoring from backup immediately is not the best first step because it could potentially reinfect clean systems if the backup is contaminated or if the source of the infection hasn't been identified and removed.

Paying the ransom is generally not recommended as it doesn't guarantee data recovery and may encourage further attacks.

Running antivirus software on all systems is not the immediate priority and may not be effective against advanced ransomware. It's more important to isolate the affected systems first before attempting any remediation steps.

By isolating affected systems first, the organization can contain the threat, assess the damage, and then proceed with subsequent recovery steps in a controlled manner.

Question 2

A company's data center has been physically secured and relocated after a terrorist attack. Local Internet connectivity has been disrupted. What DR strategy should the company employ to maintain critical operations?

Correct Answer: Use a satellite Internet connection or similar emergency communication channels.

Using a satellite Internet connection ensures critical operations can continue, whereas temporary servers on site would still be dependent on local connectivity. Relying on personal Internet or cellphone hotspots may not provide adequate security or bandwidth. Waiting for connectivity restoration might result in delays and losses. Moving the entire company is impractical.

Question 3

An IT manager has 10 minutes to salvage critical servers during a flood at a data center. Which of the following should the manager prioritize?

Correct Answer: Shutting down and transferring critical servers to higher ground.

Shutting down and transferring critical servers to higher ground helps to minimize damage and potential loss. Immediate evacuation would leave the servers in danger, while patching leaks only mitigates the damage for a short time. Replacing non-critical servers and checking the layout don't address the immediate risk, and developing a disaster recovery plan should have been done before the disaster.

image/svg+xml
Go Premium

CompTIA Security+ Preparation Package (2024)

  • 1087 Superior-grade CompTIA Security+ practice questions.
  • Accelerated Mastery: Deep dive into critical topics to fast-track your mastery.
  • Unlock Effortless CompTIA Security+ preparation: 5 full exams.
  • 100% Satisfaction Guaranteed: Full refund with no questions if unsatisfied.
  • Bonus: If you upgrade now you get upgraded access to all courses
  • Risk-Free Decision: Start with a 7-day free trial - get premium features at no cost!
More Disaster Recovery questions
18 questions (total)
Start 18 question test