Which design features support a ransomware-resilient data backup strategy?

Unlock all questions

This demo includes only 20 questions. Upgrade to access hundreds of questions, flashcards, exam simulations, and disable ads.

Full question bankExam simulationsFlashcards
From $9.99Unlock all

Prepare for the OCFA Securing Utilities Test. Practice with flashcards and multiple-choice questions, each with hints and explanations. Get ready to excel in your exam!

Multiple Choice

Which design features support a ransomware-resilient data backup strategy?

Explanation:
Ransomware-resilient data backup design emphasizes keeping copies separate from the active environment, making them tamper-evident and readily recoverable. The best approach includes offsite or offline backups to break the attack path, immutable backups so they can’t be deleted or altered during an incident, and regular test restores to prove you can actually recover. Versioning provides multiple restore points, protecting you if some backups become corrupted. Encrypting backups in transit and at rest safeguards data integrity and confidentiality, and minimizing exposure windows reduces the chance that online backups are compromised. Storing backups on the same server creates a single point of failure—the attacker can reach both the live data and the backups in one go. No encryption leaves data exposed and susceptible to tampering, and backing up only critical servers (ignoring OT) leaves gaps in recovery capability. The combination described—offsite/offline, immutable, tested, versioned, encrypted backups with minimal exposure—is what makes a backup strategy resilient against ransomware.

Ransomware-resilient data backup design emphasizes keeping copies separate from the active environment, making them tamper-evident and readily recoverable. The best approach includes offsite or offline backups to break the attack path, immutable backups so they can’t be deleted or altered during an incident, and regular test restores to prove you can actually recover. Versioning provides multiple restore points, protecting you if some backups become corrupted. Encrypting backups in transit and at rest safeguards data integrity and confidentiality, and minimizing exposure windows reduces the chance that online backups are compromised. Storing backups on the same server creates a single point of failure—the attacker can reach both the live data and the backups in one go. No encryption leaves data exposed and susceptible to tampering, and backing up only critical servers (ignoring OT) leaves gaps in recovery capability. The combination described—offsite/offline, immutable, tested, versioned, encrypted backups with minimal exposure—is what makes a backup strategy resilient against ransomware.

More Multiple Choice Questions
Subscribe

Get the latest from Examzify

You can unsubscribe at any time. Read our privacy policy