What is RTO and RPO in Security+?
D4 ยท Operations ยท CompTIA Security+ SY0-701RTO (Recovery Time Objective) is the maximum acceptable time for a system or process to be offline after a disaster before it impacts business operations. "How quickly must we be back up?"
RPO (Recovery Point Objective) is the maximum acceptable amount of data loss measured in time. "How much data can we afford to lose?" โ it defines how frequently backups must occur.
Example: RTO = 4 hours (system must be back in 4 hrs). RPO = 1 hour (backups every hour โ can only lose 1hr of data).
RPO (Recovery Point Objective) is the maximum acceptable amount of data loss measured in time. "How much data can we afford to lose?" โ it defines how frequently backups must occur.
Example: RTO = 4 hours (system must be back in 4 hrs). RPO = 1 hour (backups every hour โ can only lose 1hr of data).
Lower RTO/RPO = more expensive solutions (hot sites, real-time replication). Higher RTO/RPO = cheaper (cold sites, daily backups). The BIA determines RTO/RPO for each system. Critical systems have the lowest RTO/RPO values.