exam questions

Exam CISA All Questions

View all questions & answers for the CISA exam

Exam CISA topic 1 question 1402 discussion

Actual exam question from Isaca's CISA
Question #: 1402
Topic #: 1
[All CISA Questions]

Which of the following controls is MOST crucial to ensure an organization will be able to recover its data from backup media in the event of a disaster?

  • A. Keeping a current inventory of backup media
  • B. Encrypting data on backup media
  • C. Periodically restoring backup media for key databases
  • D. Storing backup media at an offsite facility
Show Suggested Answer Hide Answer
Suggested Answer: D 🗳️

Comments

Chosen Answer:
This is a voting comment (?). It is better to Upvote an existing comment if you don't have anything to add.
Switch to a voting comment New
46080f2
9 months ago
Selected Answer: D
I vote for D. While restore tests (option C.) are a general requirement for a backup implementation, this is specifically about disaster case. From my understanding of the ISACA way of thinking, whenever an area is narrowed down in the question, an answer specific to that area is expected. In addition, ISACA also describes the following requirement summarized in the article "How to Develop and Execute a Rigorous Data Backup and Recovery Strategy" from 18.04.2022: The most crucial control to ensure an organization can recover its data from backup media in case of a disaster is to follow the 3-2-1 rule. This rule states that organizations should maintain at least 3 copies or versions of data stored on 2 different pieces of media, with 1 copy being offsite. This approach helps reduce the risk of data disruption and ensures that there are multiple backups available for recovery purposes.
upvoted 2 times
choboanon
3 months, 3 weeks ago
Answer is not D. Why do you need a whole facility? Option C testing backups takes a priority, they could even have an offline backup for precaution.
upvoted 1 times
...
...
KAP2HURUF
11 months, 1 week ago
Selected Answer: C
However, while storing backup media offsite is crucial, it alone does not guarantee successful data recovery. Without periodically testing the restoration process (option C), there is a risk that the backup media stored offsite may be corrupted, outdated, or incomplete. Regular testing ensures that the backup media is viable and that the organization can recover its data effectively when needed. Therefore, while option D is an essential control, option C (periodically restoring backup media for key databases) is considered more crucial because it directly verifies the integrity and effectiveness of the backup and recovery process.
upvoted 2 times
...
hermfrancis
11 months, 2 weeks ago
Selected Answer: D
D , since for a disaster, onsite backup and restoration should not be done. Offsite is the key.
upvoted 2 times
choboanon
3 months, 3 weeks ago
test backups is priority and parroted many times in this exam.
upvoted 1 times
...
...
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.

Upvoting a comment with a selected answer will also increase the vote count towards that answer by one. So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.

SaveCancel
Loading ...
exam
Someone Bought Contributor Access for:
SY0-701
London, 1 minute ago