Which of the following should be the GREATEST consideration when determining the recovery time objective (RTO) for an in-house critical application, database, or server?
A.
Direction from senior management
B.
Results of recovery testing
C.
Determination of recovery point objective (RPO)
D. Impact of service interruption should be the greatest consideration when determining the recovery time objective (RTO) for an in-house critical application, database, or server. RTO is the amount of time within which a business process must be restored after a disaster or disruption, in order to avoid unacceptable consequences. The impact of service interruption will vary depending on the specific application, database, or server in question, and it can include financial loss, reputational damage, legal liability, and loss of customer trust. By understanding the impact of service interruption, the organization can set a realistic RTO that balances the cost of recovery with the potential impact of not recovering in time.
I have never been more nervous, disagreeing first time with the popular mandate and the popular winner of no-confidence vote, exam topics (haha...don't blacklist me man!).
Senior management sets the direction for all information security activities, and is ultimately accountable for due diligence; senior management trumps all.
D. Impact of service interruption
The greatest consideration when determining the recovery time objective (RTO) for an in-house critical application, database, or server should be the impact of service interruption. RTO is the maximum allowable downtime that an organization can tolerate for a specific system or service before it has a significant negative impact on its operations. Therefore, understanding the potential impact of service interruption is essential in setting an appropriate RTO.
For me only A & D are the two close options here .
D is definitely a think to consider but i think that A is the think like a manager here.
If senior management tells you that this server needs to be up and running after a disaster in 1 hour then you will have to find a way to do that in 1 hour.
In most cases direction from management and impact of service interruption should point to the same direction .
I vote A .
Don't think RPO has a big influence on RTO of an application if any. But, the impact the application has on the business for the time it's down certainly has to be the greatest consideration.
This section is not available anymore. Please use the main Exam Page.CISM Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
Broesweelies
Highly Voted 1 year, 9 months agoZiggybooboo
Highly Voted 1 year, 10 months agoyottabyte
Most Recent 7 months, 3 weeks agoCISSPST
1 year, 1 month agooluchecpoint
1 year, 2 months agoGoseu
1 year, 3 months agorichck102
1 year, 4 months agoDravidian
1 year, 6 months agomeelaan
1 year, 7 months agoCarlPTY07
1 year, 8 months agoaokisan
1 year, 10 months ago