Professional Documents
Culture Documents
All of The Above Statements Are Equally Correct
All of The Above Statements Are Equally Correct
correct?
Individual task responsibility must be clearly defined and communicated to the
personnel involved.
Failure to perform essential tasks prolongs the recovery period and diminishes the
prospects for a successful recovery.
Disaster recovery team members should be experts in their areas and have assigned
tasks.
All of the above statements are equally correct.
An arrangement involving two or more user organizations that buy or lease a building
and remodel it into a completely equipped computer site is a type of second-site back-
up pertaining to
empty shell or cold site.
recovery operations center or hot
site.
internally-provided back-up.
none of the above.
Which of the following statements about the audit objective and procedures about DRP
is least correct?
The auditor should verify that management's disaster recovery plan is adequate and
feasible for dealing with a catastrophe that could deprive the organization of its
computing resources.
The auditor should verify backup procedures, supplies, documents and documentation
and verify the members of the disaster recovery team.
The auditor should review the list of critical applications.
None. All of the above statements are correct.
A disaster recovery plan is a comprehensive statement of all actions to be taken
________ a disaster along with documented, tested procedures that will ensure
continuity of operations.
before
during
after
all of the above
Which theory states that an organization should focus exclusively on its core business
competencies while allowing outsourcing vendors to manage non-core areas such as IT
functions efficiently?
IT Outsourcing Theory
Core Competency Theory
Transaction Cost Economics (TCE) Theory testing to be
performed.
Pecking Order Theory
Among the DRP groups in a disaster recovery team, which group prepares the backup
site for operation and acquire hardware from vendors?
Data Conversion and Data Control Group
Program and Data Backup Group
Second Site Facilities Group
Audit Group
Which of the following statements about identifying critical applications is most correct?
An essential element of a DRP involves procedures to identify the critical
applications and data files of the firm to be restored
For most organizations, short-term survival requires the restoration of those functions
that generate cash flows sufficient to satisfy long-term obligations.
Applications should be identified but may not be prioritized in the restoration plan.
The task of identifying and prioritizing critical applications requires active participation
of management and user departments, excluding the internal auditors.
All of the following are clear weaknesses in the controls for Hexagon EXCEPT
the building is constructed with fire prone exterior wooden shingles with exposed interior wooden beams.
there are inadequate backup procedures because backup tapes and disks are stored on site until the end of the
week.