ISC2 Certified Secure Software Lifecycle Professional (CSSLP) Practice Question
Your SaaS company runs a mission-critical online trading platform. Management states that any regional data-center outage must not cause data loss and service must resume in under two minutes (near-zero RPO and sub-minute RTO). As the secure software lead revising the business continuity plan, which continuity strategy best satisfies these requirements?
Maintain a cold site and rely on weekly backups plus Infrastructure-as-Code scripts to rebuild the environment after an outage.
Implement asynchronous log shipping to an off-region passive replica that operators can promote when the primary site fails.
Perform nightly full backups to off-site storage and keep a warm standby site that can be brought online within four hours.
Deploy a geographically dispersed active-active architecture that uses synchronous data replication and global load balancing to enable automatic failover.
Near-zero recovery point (no data loss) and very small recovery time objectives require that both data and processing capacity already be available at more than one site and that failover occur automatically. A multi-region, active-active architecture with synchronous data replication and global load balancing keeps identical, up-to-date copies of data in two or more geographically separated locations while distributing live traffic across them. If one region fails, traffic is instantly rerouted to the other site with no need for manual intervention, meeting the sub-two-minute RTO and zero-data-loss RPO.
Asynchronous log shipping to a passive standby (option 2) can lose data committed after the last log shipment and usually needs manual promotion, so it cannot ensure zero RPO or very low RTO. A warm site with nightly backups (option 3) risks up to a day of data loss and hours of downtime. A cold site rebuilt from weekly backups and infrastructure-as-code scripts (option 4) has the longest RTO and RPO, making it unsuitable for the stated requirements.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is an active-active architecture?
Open an interactive chat with Bash
What is synchronous data replication?
Open an interactive chat with Bash
What is the role of global load balancing in business continuity?
Open an interactive chat with Bash
What do RPO and RTO mean in disaster recovery?
Open an interactive chat with Bash
How does synchronous data replication work in active-active architectures?
Open an interactive chat with Bash
What is global load balancing, and why is it important for business continuity?
Open an interactive chat with Bash
ISC2 Certified Secure Software Lifecycle Professional (CSSLP)