[Cisspstudy] Do you agree?

Holland, Brandon hollandb at frmaint.com
Mon Jun 22 11:39:21 EDT 2009 

BOTH are right :)  They jump around depending on the manner in which
they are being used.


You're over-analyzing.  This question is nice enough to lead you to the
answer.  When I read that question, I read it as blah blah blah, "return
operations to normal conditions" blah, blah, blah.  Recovery.  Even
before looking at the answers.  (Now watch out, STILL READ ALL ANSWERS
anyway, since sometimes they are tricky but in this case no)

Controls can be multiple controls.  Sometimes they can the multiple
controls at the same time, or sometimes not.  Just get a firm
understanding of what the different controls are and their definitions,
and you apply that definition to how the control is acting to come up
with the answer.  Don't go looking at any tables that match a control to
its type or it'll get confusing.

Think about how the control is being used to answer the question.  When
you think of a camera, you think of it being a detective control, but
can't it also a deterrent?  So depending on how the question is asked,
the answer could be either one.  Hey, you might put something up that
LOOKS like a camera.  Would it be a detective control?  Nope, would it
be a deterrent? Yes.  Well, wait it's ALSO compensating isn't it?  Even
the non-lookalike real-deal camera could be a compensating control since
you can't have a guard at each observation point, right?

Hope that helps,

Brandon



-----Original Message-----
From: cisspstudy-bounces at cccure.org
[mailto:cisspstudy-bounces at cccure.org] On Behalf Of Lamey, Phillip
Sent: Monday, June 22, 2009 10:13 AM
To: The CISSP Study Mailing list
Subject: Re: [Cisspstudy] Do you agree?

It is interesting to note that Shon Harris' LMS software indicates the
following in domain 1:

 

Business Continuity and disaster recovery fall under the compensating
category of security controls

 

So what is right?

 

It seems that these control classification seem to jump around from
domain to domain.

 

Is it just me or does anyone else notice this?

 

Phil Lamey, P.Eng.

CGI Senior Consultant

(506) 458-5020 ext. 5121

 

 

 

 

From: cisspstudy-bounces at cccure.org
[mailto:cisspstudy-bounces at cccure.org] On Behalf Of Sergio Pantoja
Sent: Monday, June 22, 2009 11:44 AM
To: The CISSP Study Mailing list
Subject: Re: [Cisspstudy] Do you agree?

 

Business Continuity Procedure it's a Recovery Control (recover
operations), you can't consider this procedure preventive because it
comes into scene after the disaster/disruption occur.

On Sun, Jun 21, 2009 at 6:21 PM, Belinda Foster
<belinda.foster at gmail.com> wrote:

Hey Phil --

 

I think the operative word is "procedure"......  The question is asking
about the Business Continuity Procedure, not the Business Continuity
Plan.  (Just a thought!)

 

Of course, hindsight is always 20/20.  I would have gotten this wrong
too.

On Sun, Jun 21, 2009 at 3:03 PM, Holland, Brandon <hollandb at frmaint.com>
wrote:

	Yes that is correct. When u r restoring a control then its a
recovery control. They are specifically writing procedures to restore so
its recovery.

________________________________

	From: cisspstudy-bounces at cccure.org
<cisspstudy-bounces at cccure.org> 
	To: cisspstudy at cccure.org <cisspstudy at cccure.org> 
	Sent: Sun Jun 21 11:39:41 2009
	Subject: [Cisspstudy] Do you agree? 

	Please take a look at the question below:

	

	 

	I was under the impression that BCP was a preventative control
...

	 

	Is the overall BCP plan preventative but some of the procedures
within it considered recovery procedures?

	 

	How does that work?  I am a little confused.

	 

	Also, in Domain 10 Operations Security there is a section on
Continuity Planning ... Is this not essentially BCP?  Again, I am a
little confused and would like to clear this up since I am writing in
less than a week J

	 

	Thanks for any clarification, 

	 

	Phil Lamey, P.Eng.

	CGI Senior Consultant

	(506) 458-5020 ext. 5121

	 

	 

	_______________________________________________
	cisspstudy mailing list
	cisspstudy at cccure.org
	http://cccure.org/mailman/listinfo/cisspstudy_cccure.org



_______________________________________________
cisspstudy mailing list
cisspstudy at cccure.org
http://cccure.org/mailman/listinfo/cisspstudy_cccure.org




--
Sergio Pantoja H.
spantoja at gmail.com
System, Network and Security Administrator Linux User register #239475
Mandrake Club Member

More information about the cisspstudy mailing list