Back to CompTIA Security+ (CompTIA Security+)

Business Continuity and Disaster Recovery

Planning for system disruptions

Business Continuity and Disaster Recovery focuses on the development of strategies and activities required to maintain critical business operations during natural, man-made, or technology-related disruptions and to restore normal operations after such disruptions.
5 minutes 5 Questions

Business Continuity (BC) and Disaster Recovery (DR) are critical components of an organization's security strategy, focusing on maintaining operations during disruptions and recovering after disasters. Business Continuity Planning (BCP) involves strategies to ensure critical business functions con…

Concepts covered: Crisis Communication, Business Impact Analysis, Business Continuity Planning, Incident Response, Emergency Response Plan, Recovery Time Objective, Recovery Point Objective, Backup and Redundancy, Fault Tolerance, Disaster Recovery

Test mode:
Start practice test
CompTIA Security+ - Business Continuity and Disaster Recovery Example Questions

Test your knowledge of Business Continuity and Disaster Recovery

Question 1

An organization is conducting a tabletop exercise involving a cyber attack scenario. What is the PRIMARY goal of this activity?

Correct Answer: Testing the Emergency Response Plan's effectiveness

Tabletop exercises allow organizations to test the effectiveness of their Emergency Response Plan by simulating a realistic situation, focusing on coordination and decision-making. The other options are important but are not the primary goal of a tabletop exercise.

Question 2

You are the incident response lead at your organization and have received an alert for a possible malware-infected machine. What is the first step you should take?

Correct Answer: Isolate the affected machine from the network

The first step is to isolate the affected machine from the network to prevent further spread of the malware. Reimaging the machine, scanning it with antivirus software, or deleting the files should be done later in the response process. Notifying employees and panicking are not productive first steps in this scenario.

Question 3

Upon discovering unauthorized access to sensitive customer data, what step should be taken while preserving evidence for future investigation?

Correct Answer: Capture system logs and network traffic

Capturing system logs and network traffic aids in preserving evidence for future investigation and allows the incident response team to analyze the breach. Shutting down systems, disconnecting devices, and changing software or passwords may result in loss of critical evidence.

More Business Continuity and Disaster Recovery questions
44 questions (total)
Start 44 question test