█
LastWrite
  • > Curriculum
  • > Pricing
  • > For Educators
  • > About
  • > Contact
Log InGet Started

Questions, concerns, bug reports, or suggestions? We read every message, write to us at [email protected].

More ways to reach us →
LastWrite

Structured computer science lessons for aspiring developers and security professionals.

[email protected]

(201) 785-7951

Mon–Fri, 9 AM–5 PM EST

Learn

  • Curriculum
  • Pricing

Company

  • About
  • For Educators & Schools
  • Contact Us

Legal

  • Terms of Service
  • Privacy Policy
© 2026 LastWrite. All rights reserved.
Curriculum/Cybersecurity/Risk Management and Governance/Business Continuity and Disaster Recovery
40 minIntermediate

Business Continuity and Disaster Recovery

After this lesson, you will be able to: Distinguish BCP from DRP, understand RTO/RPO, and draft a basic disaster recovery plan.

When the data center burns, ransomware encrypts everything, or AWS us-east-1 has a 6-hour outage, what does the business do? BCP/DRP defines the answer in advance.

Prerequisites:Compliance and Regulatory Frameworks

BCP vs DRP

BCP (Business Continuity Plan), keep the business running during disruption. Includes manual processes, alternate sites, communications. DRP (Disaster Recovery Plan), restore IT systems specifically. Backups, failover, restore procedures. BCP is broader; DRP is the IT subset.

💡 RTO and RPO

RTO (Recovery Time Objective), how long until we're back online? (Hours? Days?) RPO (Recovery Point Objective), how much data can we lose? (Last hour? Last day?) Tighter targets = more expensive infrastructure (hot standby vs cold backup).

DRP basics

  1. 1

    1. Backup strategy: 3-2-1 (3 copies, 2 media, 1 offsite).

  2. 2

    2. Test restores quarterly, backups you haven't restored aren't backups.

  3. 3

    3. Document the runbook.

  4. 4

    4. Tabletop exercise the scenario.

  5. 5

    5. Review after every real incident.

Ransomware-era backups

Modern attackers target backups specifically. Solution: immutable storage (S3 Object Lock, write-once-read-many) and air-gapped offline copies. If the backup is on the same domain as production, the attacker encrypts it too.

Quick Check

RTO 1 hour requires what?

Pick.

Sign in and purchase access to unlock this lesson.

Sign in to purchase
←Compliance and Regulatory Frameworks
Back to Risk Management and Governance
Security Governance in Practice→