ISC2 Systems Security Certified Practitioner (SSCP) Practice Question
A financial-technology startup runs its transaction processing system on Amazon EC2 instances behind an Application Load Balancer in the us-east-1 Region. Management asks you to design a cross-Region disaster-recovery solution that meets an RTO of 2 hours and an RPO of 15 minutes while keeping standby infrastructure costs as low as possible and requiring only minimal manual effort during failover. Which strategy best satisfies these requirements?
Deploy an active-active multi-Region setup: keep full production capacity online in both Regions and use Route 53 latency-based routing for traffic distribution.
Maintain a warm-standby environment: run the entire application stack at reduced capacity in a secondary Region with continuous data replication.
Use a backup-and-restore model: perform nightly backups to Amazon S3 and rebuild the environment on demand in another Region when needed.
Implement a pilot-light architecture: replicate databases to a minimal EC2 footprint in a secondary Region and use infrastructure-as-code to scale up additional services during a declared disaster.
A pilot-light strategy keeps a minimal version of the critical environment-such as key database replicas and essential application services-running continuously in a secondary Region, with data replicated at intervals well under the 15-minute RPO. Because only core components are provisioned, ongoing costs remain lower than a warm-standby or active-active approach. During a disaster, pre-defined infrastructure-as-code templates can rapidly scale out the remaining application and front-end capacity, allowing recovery well within the 2-hour RTO.
Backup-and-restore fails the 2-hour RTO because building and configuring new servers from backups typically takes many hours.
Warm standby meets the RTO/RPO but keeps an entire scaled-down stack running, increasing steady-state cost beyond what the scenario allows.
Active-active delivers the lowest RTO/RPO but is the most expensive because full production capacity is maintained in both Regions.
Therefore, the pilot-light architecture provides the required balance of cost efficiency and recovery objectives.
Ask Bash
Bash is our AI bot, trained to help you pass your exam. AI Generated Content may display inaccurate information, always double-check anything important.
What is a pilot-light architecture in disaster recovery?
Open an interactive chat with Bash
What are RTO and RPO in disaster recovery?
Open an interactive chat with Bash
How does infrastructure-as-code assist in scaling during a disaster recovery?
Open an interactive chat with Bash
ISC2 Systems Security Certified Practitioner (SSCP)
Incident Response and Recovery
Your Score:
Report Issue
Bash, the Crucial Exams Chat Bot
AI Bot
Loading...
Loading...
Loading...
Pass with Confidence.
IT & Cybersecurity Package
You have hit the limits of our free tier, become a Premium Member today for unlimited access.
Military, Healthcare worker, Gov. employee or Teacher? See if you qualify for a Community Discount.
Monthly
$19.99 $11.99
$11.99/mo
Billed monthly, Cancel any time.
$19.99 after promotion ends
3 Month Pass
$44.99 $26.99
$8.99/mo
One time purchase of $26.99, Does not auto-renew.
$44.99 after promotion ends
Save $18!
MOST POPULAR
Annual Pass
$119.99 $71.99
$5.99/mo
One time purchase of $71.99, Does not auto-renew.
$119.99 after promotion ends
Save $48!
BEST DEAL
Lifetime Pass
$189.99 $113.99
One time purchase, Good for life.
Save $76!
What You Get
All IT & Cybersecurity Package plans include the following perks and exams .