Documenti di Didattica
Documenti di Professioni
Documenti di Cultura
Aira Vicencio
Marian Samiley
Backup Controls
A backup is a duplicate of a file
Backup is the activity of copying files or databases so that they will
be preserved in case of equipment failure or other catastrophe.
Controls provide reasonable assurance that data is backed up and
management procedures are appropriate.
Controls may not provide reasonable assurance that data is backed up and
that data management procedures are appropriate. If controls relating to
data backup and management are not adequate, it increases the risk that:
(1) Historical records may be unavailable or inaccurate;
(2) IS&T personnel may not be able to restore and recover systems in the
event of an operating incident or erroneous processing;
(3) The procedures that are followed to archive data may not satisfy legal and
regulatory requirements; and,
(4) The procedures followed to manage and control data backups may be
inferior to controls for on-line data leading to sensitive data being damaged,
lost, modified or inappropriately disclosed.
Backup Options/Techniques
The backup technique to be employed in an organization is
dependent on the media and file structure.
1. Grandparent-Parent-Child (GPC) Backup
2. Direct Access File Backup
3. Off-site Storage
Off-site Storage
As an added safeguard, backup files created under both the GPC
and direct access approached should be stored off-site in a secure
location.