CA Foundation Business Economics Questions 2023 - Part 32
Fri, 03 Mar 2023
Inspirational journeys
Follow the stories of academics and their research expeditions
CISA—Certified Information Systems Auditor - Part 319
1. The cost of ongoing operations when a disaster recovery plan is in place, compared to not having a disaster recovery plan, will MOST likely:
A) increase.
B) decrease.
C) remain the same.
D) be unpredictable.
2. Which of the following tasks should be performed FIRST when preparing a disaster recovery plan?
A) Develop a recovery strategy.
B) Perform a business impact analysis.
C) Map software systems, hardware and network components.
D) Appoint recovery teams with defined personnel, roles and hierarchy.
3. Which of the following provides the BEST evidence of an organization's disaster recovery readiness?
A) A disaster recovery plan
B) Customer references for the alternate site provider
C) Processes for maintaining the disaster recovery plan
D) Results of tests and drills
4. Which of the following is the BEST method for determining the criticality of each application system in the production environment?
A) interview the application programmers.
B) Perform a gap analysis.
C) Review the most recent application audits.
D) Perform a business impact analysis.
5. A hot site should be implemented as a recovery strategy when the:
A) disaster tolerance is low.
B) recovery point objective (RPO) is high.
C) recovery time objective (RTO) is high.
D) disaster tolerance is high.
A) increase.
B) decrease.
C) remain the same.
D) be unpredictable.
2. Which of the following tasks should be performed FIRST when preparing a disaster recovery plan?
A) Develop a recovery strategy.
B) Perform a business impact analysis.
C) Map software systems, hardware and network components.
D) Appoint recovery teams with defined personnel, roles and hierarchy.
3. Which of the following provides the BEST evidence of an organization's disaster recovery readiness?
A) A disaster recovery plan
B) Customer references for the alternate site provider
C) Processes for maintaining the disaster recovery plan
D) Results of tests and drills
4. Which of the following is the BEST method for determining the criticality of each application system in the production environment?
A) interview the application programmers.
B) Perform a gap analysis.
C) Review the most recent application audits.
D) Perform a business impact analysis.
5. A hot site should be implemented as a recovery strategy when the:
A) disaster tolerance is low.
B) recovery point objective (RPO) is high.
C) recovery time objective (RTO) is high.
D) disaster tolerance is high.
1. Right Answer: A
Explanation: Due to the additional cost of disaster recovery planning (DRP) measures, the cost of normal operations for any organization will always increase after a DRP implementation, i.e., the cost of normal operations during a nondisaster period will be more than the cost of operations during a nondisaster period when no disaster recovery plan was in place.
2. Right Answer: B
Explanation: The first step in any disaster recovery plan is to perform a business impact analysis. All other tasks come afterwards.
3. Right Answer: D
Explanation: Plans are important, but mere plans do not provide reasonable assurance unless tested. References for the alternate site provider and the existence and maintenance of a disaster recovery plan are important, but only tests and drills demonstrate the adequacy of the plans and provide reasonable assurance of an organization's disaster recovery readiness.
4. Right Answer: D
Explanation: A business impact analysis will give the impact of the loss of each application. Interviews with the application programmers will provide limited information related to the criticality of the systems. A gap analysis is only relevant to systems development and project management. The audits may not contain the required information or may not have been done recently.
5. Right Answer: A
Explanation: Disaster tolerance is the time gap during which the business can accept nonavailability of IT facilities. If this time gap is low, recovery strategies that can be implemented within a short period of time, such as a hot site, should be used. The RPO is the earliest point in time at which it is acceptable to recover the data. A high RPO means that the process can wait for a longer time. In such cases, other recovery alternatives, such as warm or cold sites, should be considered. A highRTO means that additional time would be available for the recovery strategy, thus making other recovery alternatives-such as warm or cold sites- viable alternatives.
Explanation: Due to the additional cost of disaster recovery planning (DRP) measures, the cost of normal operations for any organization will always increase after a DRP implementation, i.e., the cost of normal operations during a nondisaster period will be more than the cost of operations during a nondisaster period when no disaster recovery plan was in place.
2. Right Answer: B
Explanation: The first step in any disaster recovery plan is to perform a business impact analysis. All other tasks come afterwards.
3. Right Answer: D
Explanation: Plans are important, but mere plans do not provide reasonable assurance unless tested. References for the alternate site provider and the existence and maintenance of a disaster recovery plan are important, but only tests and drills demonstrate the adequacy of the plans and provide reasonable assurance of an organization's disaster recovery readiness.
4. Right Answer: D
Explanation: A business impact analysis will give the impact of the loss of each application. Interviews with the application programmers will provide limited information related to the criticality of the systems. A gap analysis is only relevant to systems development and project management. The audits may not contain the required information or may not have been done recently.
5. Right Answer: A
Explanation: Disaster tolerance is the time gap during which the business can accept nonavailability of IT facilities. If this time gap is low, recovery strategies that can be implemented within a short period of time, such as a hot site, should be used. The RPO is the earliest point in time at which it is acceptable to recover the data. A high RPO means that the process can wait for a longer time. In such cases, other recovery alternatives, such as warm or cold sites, should be considered. A highRTO means that additional time would be available for the recovery strategy, thus making other recovery alternatives-such as warm or cold sites- viable alternatives.
Tags:
it certification certified it it exams isaca certification isaca cgeit isaca cisa isaca cism isaca cobit 5 isaca crisc isaca questions practice exams pratice quests risc maangement it management it questions isaca answers isaca practice isaca dumps isaca test test questions questins and answer explanation0 Comments
Categories
Recent posts
CA Foundation Business Economics Questions 2023 - Part 31
Fri, 03 Mar 2023
CA Foundation Business Economics Questions 2023 - Part 30
Fri, 03 Mar 2023
Leave a comment