Which of the following is MOST important for an IS auditor to verify during a disaster recovery audit?
Which of the following is MOST important for an IS auditor to verify during a disaster recovery audit?
During a disaster recovery audit, the most important element for an IS auditor to verify is that regular backups are made and stored offsite. This is crucial because backups are the primary means of data recovery in the event of a disaster. Without recent and offsite backups, recovering lost or corrupted data becomes significantly more difficult or impossible, impacting business continuity.
C. Regular backups are made and stored offsite.
B. Roles and responsibilities are documented.
While backups are essential for data recovery, the disaster recovery plan outlines the broader strategy and procedures for responding to various disasters. An outdated or incomplete DRP could lead to confusion, inefficiency, and even failure in the event of a disaster. Therefore, ensuring that the DRP is regularly updated and reflects the organization's current needs, technologies, and best practices is fundamental to effective disaster recovery preparedness.
C. Regular backups are made and stored offsite.
A is answer.