Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Map
Viewer
‎10-20-2020 11:26 PM
‎10-20-2020 11:26 PM

CISSP question

Hi Everyone, 

 

I am studying to take the CISSP test and I came across a discrepancy in material on BIA. is the MTD = RTO + WRT or is  the MTD > RTO + WRT?

 

appreciate the guidance

MAP

Labels
Reply
0 Kudos
6 Replies
ericgeater
Community Champion
‎10-21-2020 08:00 AM
‎10-21-2020 08:00 AM

Equals.  You must recover the systems, then you must recover the work the systems perform.

 

-----------
A claim is as good as its veracity.
Reply
0 Kudos
Map
Viewer
‎10-21-2020 08:04 AM
‎10-21-2020 08:04 AM

Thank you!

Reply
0 Kudos
ericgeater
Community Champion
‎10-21-2020 08:18 AM
‎10-21-2020 08:18 AM

My response may be an oversimplification of the process, but yes, you add the recovery time objective to the work recovery time to get your MTD.

 

Just keep in mind that the MTD itself is the maximum length of time a business can survive without access to critical resources.  Ideally, you do want the RTO and WRT to be less than your maximum tolerable downtime... but you have to budget for both elements in your planning.

-----------
A claim is as good as its veracity.
Reply
0 Kudos
JKWiniger
Community Champion
‎10-21-2020 09:15 AM
‎10-21-2020 09:15 AM

@Map 

 

Did a little searching and found this: https://defaultreasoning.com/2013/12/10/rpo-rto-wrt-mtdwth/ 

 

It seems to be a good graphical explanation.

 

John-

Reply
ericgeater
Community Champion
‎10-21-2020 09:35 AM
‎10-21-2020 09:35 AM

Great find!  Bookmarking that for later.

-----------
A claim is as good as its veracity.
Reply
0 Kudos
kdogar
Viewer
‎09-28-2022 05:20 PM
‎09-28-2022 05:20 PM

Yes,

MTD = WRT + RTO

 

At this stage all systems are recovered, integrity of the system or data is verified and all critical systems can resume normal operations. The Work Recovery Time (WRT) determines the maximum tolerable amount of time that is needed to verify the system and/or data integrity. This could be, for example, checking the databases and logs, making sure the applications or services are running and are available. In most cases those tasks are performed by application administrator, database administrator etc. When all systems affected by the disaster are verified and/or recovered, the environment is ready to resume the production again.

 

The sum of RTO and WRT is defined as the Maximum Tolerable Downtime (MTD) which defines the total amount of time that a business process can be disrupted without causing any unacceptable consequences. This value should be defined by the business management team or someone like CTO, CIO or IT manager.

 

Courtesy of ..

https://defaultreasoning.com/2013/12/10/rpo-rto-wrt-mtdwth/

Reply
0 Kudos