Try Magic Notes and save time.Try it free
Try Magic Notes and save timeCrush your year with the magic of personalized studying.Try it free

CISM

5.0 (5 reviews)
Get a hint
SDO
Click the card to flip 👆
1 / 75
1 / 75
Terms in this set (75)
SDO
Relates directly to the business needs; is the level of services to be reached during the alternate process mode until the normal situation is restored.

Is the required level of functionality that must be supported during the alternate process mode until the normal situation is restored, which is directly related to business needs. Time taken to resume ACCEPTABLE OPERATIONS. Must be achieved within the RTO. Note that acceptable level may be substantially less than normal operations, less costly & easier to achieve.

Agreed-on level of service required to resume acceptable operations. Reflects a commitment to internal customers to meet certain performance standards. Note that the primary focus of incident response is to ensure that business-defined service delivery objectives are met.

A prior determination of acceptable levels of operation in the event of an outage is the SDO. The SDO may be set at less than normal operation levels, but sufficient to sustain essential business functions.

E.g. if the DB is corrupted by an incident, the org will be able to record transactions through an Excel spreadsheet, but other processes will not be able to run until service is restored.
RTO
Time taken to achieve NORMAL OPERATIONS or SDO. Exceeding this could threaten the org. Is commonly agreed to be the time frame between a disaster and the return to normal or acceptable operations defined by the service level objective. The RTO must be shorter than the allowable interruption window (AIW).

Is the target time to restore services to either the service delivery objective (SDO) or normal operations. Note that return to business as usual processing occurs significantly later than the RTO. RTO is an "objective," and full restoration may or may not coincide with the RTO. RTO can be the minimum acceptable operational level, far short of normal operations.

E.g. if the DB is corrupted by an incident, access to the DB will be restored within 8 hours.
MTO
Maximum length of time that the organization can OPERATE AT THE RECOVERY SITE, i.e. operating in an ALTERNATE MODE.

Must be at least as great as the AIW & will generally be longer. Therefore, it is possible that exceeding the MTO will result in not being able to meet the AIW.

Must be at least as long as the AIW to minimize the risk to the org in the event of a disaster.

E.g. if the DB is corrupted by an incident, the org will be able to record transactions through a spreadsheet, but customer experience will be negatively affected after 12 hours.

The main variable affecting the ability to operate in the recovery site is adequate resource availability such as diesel fuel to operate generators. Although resources would be taken into account during initial calculation of the maximum tolerable outage (MTO), circumstances associated with disaster recovery frequently have unexpected impacts on availability of resources. As a result, the expectations may not be met during real-world events.
RPO
Determined based on the acceptable data loss in case of a disruption of operations, i.e. the age of the data required for recovery. It indicates the earliest point in time that is acceptable to recover the data. Effectively quantifies the permissible amount of data loss in case of interruption.

E.g. if the DB is corrupted by an incident, the backup at the clsoe of work on the previous day should be restored.
AIW
Acceptable Interruption Windown is the amount of time that normal operations can be down before the organization faces an existential threat and faces major financial difficulties.

The acceptable interruption window is the maximum period of time that a system can be unavailable before compromising the achievement of the enterprise's business objectives.