Flashcards

Business Continuity and Disaster Recovery

Planning for system disruptions

5 minutes 5 Questions

Business Continuity (BC) and Disaster Recovery (DR) are critical components of an organization's security strategy, focusing on maintaining operations during disruptions and recovering after disasters. Business Continuity Planning (BCP) involves strategies to ensure critical business functions con…

Concepts covered

Crisis Communication Business Impact Analysis Business Continuity Planning Incident Response Emergency Response Plan Recovery Time Objective Recovery Point Objective Backup and Redundancy Fault Tolerance Disaster Recovery

Test mode:

Exam (Timed)

Practice (With explanations)

Start practice test

CompTIA Security+ - Business Continuity and Disaster Recovery Example Questions

Test your knowledge of Business Continuity and Disaster Recovery

Question 1

An organization is conducting a tabletop exercise involving a cyber attack scenario. What is the PRIMARY goal of this activity?

Testing the Emergency Response Plan's effectiveness Evaluating individual job performance Implementing new security controls Training employees on cybersecurity measures

Correct Answer: Testing the Emergency Response Plan's effectiveness

Tabletop exercises allow organizations to test the effectiveness of their Emergency Response Plan by simulating a realistic situation, focusing on coordination and decision-making. The other options are important but are not the primary goal of a tabletop exercise.

Question 2

You are the incident response lead at your organization and have received an alert for a possible malware-infected machine. What is the first step you should take?

Perform a full system scan with antivirus software Isolate the affected machine from the network Notify all employees of the infection Reimage the machine

Correct Answer: Isolate the affected machine from the network

The first step is to isolate the affected machine from the network to prevent further spread of the malware. Reimaging the machine, scanning it with antivirus software, or deleting the files should be done later in the response process. Notifying employees and panicking are not productive first steps in this scenario.

Question 3

Upon discovering unauthorized access to sensitive customer data, what step should be taken while preserving evidence for future investigation?

Delete all potential malicious files Immediately shut down all affected systems Capture system logs and network traffic Disconnect all external devices

Correct Answer: Capture system logs and network traffic

Capturing system logs and network traffic aids in preserving evidence for future investigation and allows the incident response team to analyze the breach. Shutting down systems, disconnecting devices, and changing software or passwords may result in loss of critical evidence.

Unlock Premium Access

CompTIA Security+

Access to ALL Certifications: Study for any certification on our platform with one subscription
1241 Superior-grade CompTIA Security+ practice questions
Unlimited practice tests across all certifications
Detailed explanations for every question
CompTIA Security+: 5 full exams plus all other certification exams
100% Satisfaction Guaranteed: Full refund if unsatisfied
Risk-Free: 7-day free trial with all premium features!

More Business Continuity and Disaster Recovery questions

44 questions (total)

Start 44 question test