CompTIA Security+ Certification

Support Skills
5.4 Disaster Recovery

This courseware is copyrighted © 2015 gtslearning. No part of this courseware or any training material supplied by gtslearning International Limited to accompany
the courseware may be copied, photocopied, reproduced, or re-used in any form or by any means without permission in writing from a director of gtslearning
International Limited. Violation of these laws will lead to prosecution. All trademarks, service marks, products, or services are trademarks or registered trademarks
of their respective holders and are acknowledged by the publisher.
All gtslearning products are supplied on the basis of a single copy of a course per student. Additional resources that may be made available from gtslearning may
only be used in conjunction with courses sold by gtslearning. No material changes to these resources are permitted without express written permission by a director
of gtslearning. These resources may not be used in conjunction with content from any other supplier.
If you suspect that this course has been copied or distributed illegally, please telephone or email gtslearning.
 Objectives
• Develop effective
disaster recovery plans
• Use IT contingency
planning to eliminate
single points of failure
and provide fault
tolerance and
redundancy

423
5.4 Disaster Recovery
 Disaster Recovery Planning
• Identify scenarios
o Risk and cost assessment
o Threat modeling

• Identify tasks, resources, and responsibilities for

response
• Train staff in disaster recovery and change
management
• Succession planning

423
5.4 Disaster Recovery
 Testing Disaster Recovery Plans
• Tabletop exercises
• Simulations
• Review and update plans
o Following an incident
o When new threats emerge
o When systems change

• Notifications
o Stakeholders
o Legal
o Customers
424
5.4 Disaster Recovery
 Secure Recovery
• After a disaster the focus may lie too much on
availability at the expense of confidentiality and
integrity
• Security of backup data sets stored on spares or
at alternate sites
• Security of systems following a recovery
operation

425
5.4 Disaster Recovery
 IT Contingency Planning
• Minimize or eliminate Single Points of Failure
• Fault Tolerance
o Systems and procedures that can provide the same (or nearly)
level of service despite “incidents”
o Redundant / fail-over components (RAID, PSU, network links)
o UPS / standby power
o Backup

425
5.4 Disaster Recovery
 Redundant Components
• Load balancing network links
o Adapter teaming
o More bandwidth (except during failover)
o Design network with multiple paths

• Power supply
o Uninterruptible Power Supply (UPS) for battery backup
o Backup generator

• Cooling fans
• Hardware and spare parts

426
5.4 Disaster Recovery
 Drive Arrays (RAID)
• RAID 0
o Striping with parity
o No fault tolerance

• RAID 1
o Mirroring (2 disks / 1 controller)
o Duplexing (2 disks and controllers)

• RAID 5
o Striping with distributed parity

• RAID 0+1 / RAID 1+0 (RAID

10)
o Mirror of stripes or stripe of mirrors

• RAID 5+0 (RAID 50)

o RAID5 sets striped across a RAID0 set

428
5.4 Disaster Recovery
 Clusters
• Provide fault tolerant
servers
• Configure nodes for
failover
• Active / Active
• Active / Passive

428
5.4 Disaster Recovery
 Spares and Site Redundancy
• Spares and sites provide redundancy for damage
to resources stored on the primary site
• Sites provide redundancy against failures of
utility suppliers
• Sites and spares are categorized as hot, warm,
or cold
• Replication between spares / sites
o Synchronous (must be written at both sites – expensive)
o Asynchronous (one site is primary / master and the others
secondary)
o Optimum distances between sites
430
5.4 Disaster Recovery
 Review
• Develop effective disaster
recovery plans
• Use IT contingency
planning to eliminate single
points of failure and
provide fault tolerance and
redundancy

432
5.4 Disaster Recovery