Isaca Certified in Risk and Information Systems Control CRISC Question # 213 Topic 22 Discussion
CRISC Exam Topic 22 Question 213 Discussion:
Question #: 213
Topic #: 22
An organization has recently updated its disaster recovery plan (DRP). Which of the following would be the GREATEST risk if the new plan is not tested?
A.
External resources may need to be involved.
B.
Data privacy regulations may be violated.
C.
Recovery costs may increase significantly.
D.
Service interruptions may be longer than anticipated.
Testing a disaster recovery plan is essential to ensure its effectiveness and identify any gaps or weaknesses that might hinder the recovery process. Without testing, the organization may face longer service interruptions than anticipated, which could result in loss of revenue, customer dissatisfaction, reputational damage, and regulatory penalties. Some of the best practices for disaster recovery testing are1:
Test many scenarios
Test regularly
Document everything
Keep everyone updated
Define metrics
Evaluate the results
Test your disaster recovery plan
References = Best Practices For Disaster Recovery Testing | Snyk
Contribute your Thoughts:
Chosen Answer:
This is a voting comment (?). You can switch to a simple comment. It is better to Upvote an existing comment if you don't have anything to add.
Submit