Infrastructure Considerations

Question 1

Availability

Answer 1

Availability → measure of how consistently systems and services are accessible when needed, focusing on uptime and minimizing disruptions to users.

Question 2

Resilience

Answer 2

Resilience → ability of infrastructure to withstand failures or attacks and continue operating or quickly recover without major service impact.

Question 3

MTTR

Answer 3

Mean time to recovery (MTTR) → average amount of time required to restore a system or service after a failure, used to measure operational effectiveness.

Question 4

Responsiveness

Answer 4

Responsiveness → how quickly systems react to user requests or changes in demand, directly affecting performance and user experience.

Question 5

Scalability

Answer 5

Scalability → ability of infrastructure to handle increased workload by adding resources, either vertically or horizontally, without redesigning the system.

Question 6

Elasticity

Answer 6

Elasticity → ability to automatically scale resources up or down in real time based on demand, commonly associated with cloud environments.

Question 7

Ease of Deployment

Answer 7

Ease of deployment → how quickly and reliably systems, updates, or applications can be deployed, impacting agility and operational efficiency.

Question 8

Risk Transferance

Answer 8

Risk transference → strategy where financial risk is shifted to a third party, commonly through cybersecurity insurance, without eliminating the underlying threat.

Question 9

Ease of Recovery

Answer 9

Ease of recovery → how quickly and reliably systems can be restored after an incident using backups, snapshots, or disaster recovery processes.

Question 10

Patch Availability

Answer 10

Patch availability → whether vendors provide timely security updates to fix known vulnerabilities, directly affecting long-term system security.

Question 11

Inability of Patch

Answer 11

Inability to patch → situation where systems cannot be updated due to legacy software, operational constraints, or vendor limitations, increasing security risk.

Question 12

Power

Answer 12

Power → infrastructure consideration involving reliable electrical supply, backup generators, and uninterruptible power systems to maintain availability.

Question 13

Compute

Answer 13

Compute → processing capacity of systems, including central processing unit and memory resources, which determines performance and workload handling.

Question 14

Security Zones

Answer 14

Security zones → segmented areas of infrastructure grouped by trust level to limit access and reduce lateral movement during an attack.

Question 15

Attack Surface

Answer 15

Attack surface → total number of exposed entry points, services, interfaces, and vulnerabilities that attackers could potentially exploit.