1/17
This flashcard set covers the key vocabulary and concepts of disaster recovery, recovery planning, and organizational security strategies from Chapter 8 of the AMIS1003 lecture.
Name | Mastery | Learn | Test | Matching | Spaced | Call with Kai | Chat |
|---|
No analytics yet
Send a link to your students to track their progress
Disaster Recovery
Methods that protect data from natural or human-induced disasters, focusing on the restoration of an organization's IT systems and infrastructure following a disruptive event.
Human-induced Disasters
Intentional acts or mistakes caused by a person, such as hacking attacks, viruses, malware, or accidentally reformatting a hard disk.
Online Backup Services
Services used to backup and restore computers across various platforms; examples include Carbonite, Barracuda Cloud Storage, CrashPlan, and Mozy.
Restore Point
A saved state of a computer containing information about Registry settings, system files, and programs that Windows needs to run properly, used to return a system to a previous state if a problem occurs.
Disaster Recovery (DR) Plan
A formal document containing detailed instructions on how to respond to unplanned incidents such as natural disasters, power outages, and cyber attacks to minimize effects and resume operations.
Disaster Recovery Team
A group responsible for developing, implementing, and maintaining the DRP, including defining member responsibilities and identifying emergency contacts.
Critical Applications and Resources
Business processes evaluated as essential for short-term survivability and cash flow, such as the processing of payroll.
Off-site Storage
A secure location away from the primary site used to store backups of financial statements, tax returns, employee lists, inventory records, and a copy of the DRP.
Network Security
The practice of configuring firewalls, segmenting networks, and implementing strong passwords to block unauthorized access to sensitive information.
User Education & Awareness
Training employees to identify and report suspicious activities and phishing emails to reduce the risk of human error.
Malware Prevention
The use of anti-virus software, regular security updates, and patches to detect and prevent infections.
Removable Media Controls
Policies and controls for using portable storage, including encryption, antivirus scanning, and restricted access.
Secure Configuration
Configuring hardware and software to be secure by default, which includes disabling unnecessary services and removing default accounts and passwords.
Least Privilege Principle
A security concept where user access rights are limited to the minimum necessary to perform their job requirements.
Incident Management
A plan to respond to cybersecurity incidents effectively by identifying, reporting, and assessing impact to contain damage.
Monitoring
The continuous analysis of log files, network traffic, and system performance metrics to identify potential threats or anomalies.
Home & Mobile Working Security
The establishment of policies including secure connections and data encryption to protect sensitive information in remote environments.
Cybersecurity Governance
The establishment of policies, procedures, and controls to manage risks, including regular risk assessments and compliance audits.