CISSP Exam - Question 180

very very unreal scenario. They haven't money for Surge protectors but want DR capabilities

Key here is "the site". If surge hits and nothing is protecting the hardware the entire site could be down and PSU fried. DR site would be elsewhere and be unaffected.

In a scenario where a surge hits and nothing is protecting the hardware, then the entire site could potentially go down, which could result in damage to PSUs and other equipment. However, from a compensating control perspective in the context of the CISSP exam, backup diesel generators are often considered to be a valid compensating control for mitigating the loss of power that can result from electrical surges.

If an electrical surge occurs, the systems themselves could be fried. An alternate source of power like a diesel generator will not help. They only solution to frying your actual systems from these options is an alternate DR site.

to be clear and correct: every answer is incorrect. "hot" means equiped with configuration which means needs to be running (offline prepared config. is not possible in real life). for "warm" it would be correct.

I am not sure, but keep in mind the question did not mention about cost-effective solution.

B, Surge is prolonged excess power, A,C,D not protect for this.

It looks like D. "provide equivalent or comparable protection for a system" https://csrc.nist.gov/glossary/term/compensating_controls If a surge happens and electricity goes out, the generator will continue supplying power.

Answer is B.

Other answers don't make sense with the given scenario

D is correct

In the event of electrical surges that could potentially damage systems, a hot DR environment provides redundancy by replicating critical systems and data in a separate location. This ensures that essential services can quickly fail over to the DR environment, minimizing downtime and data loss.

Agree the question does not make a lot of sense.. but thinking for cost effective and considering that no surge protectors... it is very expensive to have hot disaster recovery DR... looking at C. active-active to clusters... can ensure data protection and integrity and availability considering that clusters are connected to different power sources.. I think C. can be a good answer as well.

If we think as a Manager, and the main problem is power failures, a "compensatory control" that is, not the best solution but something that helps when the best option which is a DR site is not viable, is having "backup diesel generators ". I go with D

I don't think B is a correct answer. Imagine you are a manager, you come to the director of the company and he said "Look, we don't have surge protectors. What are we going to do when a surge happens?" You say "No worries, we will just move to another buillding!" :)

interesting that literally every question here seems wrong. The question isnt about loss of power. Does literally no one know what a surge protector does? Surge protector is not a control protecting the entire building. Therefore a DR hot site and a backup generator is overkill. A generator would be a compensating control for UPS but not a surge protector. Surge protectors are controls that protect a piece of equipment. Therefore a valid compensating control would be having redundancy for that system. AKA active/active clusters ---> network equipment can apply to servers as well

HOT site is better than having diesel generators? i mean thats not a realistic implementation of this. Having backup ANY kind of generators would be suffice generally and is a more realistic answer to such scenario. I have to go against the grain. D