Chapter 73 · Quiz

Recovery Testing — Quiz

10-question assessment covering recovery testing principles, rules of engagement, tabletop exercises, failover testing, simulation testing, and parallel processing fault tolerance.

Question 1 of 6
Which constraint in recovery testing ensures that the test procedures do not disrupt live services for real users?
Question 2 of 6
An organization brings together its IT director, CISO, HR lead, operations manager, and legal counsel to verbally walk through a simulated ransomware attack — no systems are started, no data is moved, no hardware is reconfigured. What type of recovery test is this?
Question 3 of 6
During a failover test, the primary firewall is deliberately shut down. What is the expected user experience if the failover is working correctly?
Question 4 of 6
A phishing simulation email reaches employees' inboxes and 34% of users click the link. What do these two findings tell the security team?
Question 5 of 6
A transaction processing system uses eight CPU cores. Two cores fail and are automatically removed from the active pool. The system continues processing on the remaining six cores at reduced throughput. What recovery property does this illustrate?
Question 6 of 6
Which is a recognized limitation of tabletop exercises that requires organizations to use other recovery testing methods as well?

Matching

Match each recovery testing scenario to the method it best describes.

1. Department heads and IT staff meet to discuss what they would each do if the primary data center lost power — no systems are started and no hardware is touched.
2. Engineers shut down the primary network router during a maintenance window to confirm that the secondary router automatically assumes the virtual IP and resumes routing within the target time.
3. The security team sends a fake "urgent password reset" email to all 600 employees, then measures how many had it caught by the email filter vs. how many clicked the link in their inbox.
4. Administrators disable 3 of 12 processing nodes and verify that the system detects the faults, removes those nodes from the active pool, and continues processing transactions on the remaining 9.
A. Tabletop exercise
B. Failover test
C. Phishing simulation
D. Parallel processing validation