Processing Integrity and Availability Controls
8 important questions on Processing Integrity and Availability Controls
Why is it important that systems and information are available for use whenever needed?
Interruptions to business processes due to the unavailability of systems or information can cause significant financial losses. Therefore, it is important that systems and information are available for use whenever needed. The primary objective is to minimize the risk of system downtime. It is impossible, however, to completely eliminate the risk of downtime. Therefore, organizations also need controls designed to enable quick resumption of normal operations after an event disrupts system availability.
Redundant arrays of independent drivers (RAID)
Redundant arrays of independent drivers (RAID), a fault tolerance technique that records data on multiple disk drives instead of just one to reduce the risk of data loss. Thus, if one disk drive fails, the data can be readily accessed from another. --> The use of redundant components provides fault tolerance, which
is the ability of a system to continue functioning in the event that a particular
component fails.
Uninterruptible power supply (UPS)
Uninterruptible power supply (UPS) is an alternative power supply device that protects against the loss of power and fluctuations in the power level by using battery power to enable the system to operate long enough to back up critical data and safely shut down. --> It is also important to locate and design the data centers housing mission-critical servers and databases so as to minimize the risks associated with natural and human-caused disasters.
- Higher grades + faster learning
- Never study anything twice
- 100% sure, 100% understanding
Why can training also reduce the risk of system downtime?
Training can also reduce the risk of system downtime. Well-trained operators are less likely to make mistakes and will know how to recover, with minimal damage, from errors they do commit.
Why can antivirus and anti-spyware programs reduce the risk of system downtime?
System downtime can also occur because of computer malware (viruses and worms). Therefore, it is important to install, run, and keep current antivirus and anti-spyware programs.
Recovery point objective (RPO)
When a problem occurs, data about everything that has happened since the last backup is lost unless it can be re-entered into the system. Thus, management's answer to the first question determines the organization's recovery point objective (RPO), which represents the maximum amount of data that the organization is willing to have to re-enter or potentially lose. The RPO is inversely related to the frequency of backups: the smaller the desired RPO, the more frequently backups need to be made.
Recovery time objective (RTO)
The organization's recovery time objective (RTO) is the maximum tolerable time to restore an information system after a disaster. Thus, the RTO represents the length of time that the organization is willing to attempt to function without its information system.
Data backup procedures
Data backup procedures are designed to deal with
situations where information is not accessible because the relevant files or databases have become corrupted as a result of hardware failure, software problems, or human error, but the information system itself is still functioning. Several different backup procedures exist.
The question on the page originate from the summary of the following study material:
- A unique study and practice tool
- Never study anything twice again
- Get the grades you hope for
- 100% sure, 100% understanding