🧠 1. What is Backup?
Backup means creating a copy of data (files, databases, or systems) so that it can be restored in case the original data is lost, damaged, or corrupted.
💡 In Simple Words:
Backup = Safety Copy of Data
📦 Example:
If the bank’s customer database gets deleted accidentally, a backup copy helps restore all customer information.
📋 Why Backup is Important (especially in Banking):
- Protection against data loss (accidental deletion, corruption)
- Recovery from hardware failure (server crash, disk failure)
- Protection from cyberattacks (ransomware, malware)
- Ensures business continuity and compliance with RBI/IT Act guidelines
- Helps in audit and regulatory checks
⚙️ 2. What is Recovery?
Recovery is the process of restoring lost or damaged data from a backup copy to its original location or a new system.
🔄 Example:
If an BoB branch’s database server crashes, data can be recovered from last night’s backup to minimize disruption.
🔐 3. Key Terms
| Term | Meaning |
|---|---|
| Full Backup | Complete copy of all data |
| Incremental Backup | Backs up only data changed since the last backup |
| Differential Backup | Backs up data changed since the last full backup |
| Restore | Bringing back data from backup media |
| RPO (Recovery Point Objective) | Maximum acceptable data loss (e.g., 1 hour of data) |
| RTO (Recovery Time Objective) | Maximum time allowed to restore systems after failure |
| DR Site (Disaster Recovery Site) | Alternate location to continue operations if main site fails |
🗂️ 4. Types of Backup
| Backup Type | Description | Pros | Cons | Example |
|---|---|---|---|---|
| Full Backup | Copy of all data each time | Simple, complete | Time-consuming, large size | Full system backup every Sunday |
| Incremental Backup | Only changed data since last backup | Fast, small storage | Slow restore (depends on previous backups) | Daily incremental backups |
| Differential Backup | Changed data since last full backup | Faster restore than incremental | Takes more space | Wednesday backup after Sunday full backup |
| Mirror Backup | Real-time copy of source | Instant recovery | Needs large storage, not historical | RAID, real-time disk mirroring |
💾 5. Backup Storage Methods
| Method | Description | Example |
|---|---|---|
| Local Backup | Stored on same location (hard disk, NAS) | Branch-level file server |
| Offsite Backup | Stored at a different physical location | DR center or head office |
| Cloud Backup | Data backed up to cloud provider | AWS, Azure backup solutions |
| Hybrid Backup | Mix of local + cloud backup | Local copy for quick restore, cloud for disaster recovery |
🧱 6. Backup Media Types
| Media Type | Features | Commonly Used In |
|---|---|---|
| Tape Backup | Low cost, long-term storage | Archival backups |
| Hard Disk / SSD | Fast access, expensive | Daily/weekly backups |
| Optical Discs (DVD/Blu-ray) | Small data, personal backups | Small branches |
| Cloud Storage | Accessible anywhere, scalable | Modern data centers |
| Network Attached Storage (NAS) | Centralized, fast LAN access | Intra-branch or intra-bank backups |
🏦 7. Backup Frequency in Banking Environment
| Frequency | What is Backed Up | Purpose |
|---|---|---|
| Daily | Transaction data, logs | Restore most recent activities |
| Weekly | Full system backup | Ensure full copy available |
| Monthly / Quarterly | Archive data | Regulatory and audit compliance |
| Real-time / Continuous | Mission-critical data (core banking, ATM systems) | Zero data loss (e.g., synchronous replication) |
⚡ 8. Backup Policies in Banks (RBI Guidelines)
Banks must maintain backups as per RBI’s Cybersecurity Framework and IT Policy Guidelines:
✅ Key Points:
- Maintain at least 3 generations of backup (current + 2 previous).
- Store backups offsite in a secure location.
- Ensure encryption and access control for backup media.
- Conduct periodic restore testing to ensure data can actually be recovered.
- Maintain a Backup Register for physical media (tapes/disks).
- Align backup and recovery strategy with Business Continuity Plan (BCP) and Disaster Recovery Plan (DRP).
🔁 9. Recovery Strategies
| Recovery Strategy | Description | Example |
|---|---|---|
| Cold Site | Basic infrastructure only; data & systems restored later | Standby site with power & network only |
| Warm Site | Partially equipped; some data preloaded | Secondary data center with periodic sync |
| Hot Site | Fully equipped, near real-time data replication | DR site that can take over instantly |
| Cloud DR | Disaster Recovery over cloud | AWS/Azure based replication |
📊 10. Recovery Parameters (RPO vs RTO)
| Term | Meaning | Example |
|---|---|---|
| RPO – Recovery Point Objective | How much data loss can be tolerated | RPO = 15 min → system must back up every 15 min |
| RTO – Recovery Time Objective | How quickly system must be restored | RTO = 2 hours → system must be live again within 2 hours |
💡 Example:
If bank’s CBS (Core Banking System) has
- RPO = 10 minutes → backup every 10 minutes
- RTO = 1 hour → full restoration within 1 hour of failure
🧰 11. Common Backup Strategies
| Strategy | Approach | Description |
|---|---|---|
| 3-2-1 Rule | Keep 3 copies of data → on 2 different media → 1 offsite | Standard best practice |
| Grandfather-Father-Son | Monthly (grandfather), Weekly (father), Daily (son) | Rotation pattern for backup tapes |
| Continuous Data Protection (CDP) | Backup happens instantly as data changes | Used in critical banking systems |
| Snapshot Backup | Point-in-time image of data | Used in virtual servers (VMs) |
| Replication | Real-time copy to secondary site | DR sites in banking |
🧾 12. Example – Bank’s Backup & Recovery Setup
| System | Backup Type | Frequency | Recovery Site |
|---|---|---|---|
| Core Banking System (CBS) | Full + Incremental | Real-time + Daily | Hot Site (DR Center) |
| Email Server | Full + Differential | Weekly + Daily | Warm Site |
| ATM Transaction Data | Continuous Replication | Real-time | DR + Cloud backup |
| Customer Documents | Full | Weekly | Offsite (encrypted storage) |
🔐 13. Security of Backup Data
| Measure | Description |
|---|---|
| Encryption | Protects data during storage and transfer |
| Access Control | Only authorized staff can access backups |
| Labeling & Logging | Track backup media and usage |
| Testing | Regularly test restore to verify data integrity |
| Retention Policy | Define how long each backup is kept |
| Safe Storage | Fireproof, climate-controlled vaults for tapes |
⚠️ 14. Common Backup and Recovery Challenges
| Challenge | Example |
|---|---|
| Human Error | Forgetting to run backup jobs |
| Hardware Failure | Backup drive malfunction |
| Ransomware Attack | Encrypted or deleted backups |
| Outdated Backup Media | Old tapes unreadable |
| Incomplete Testing | Data cannot be restored when needed |
🧮 15. Best Practices (For Exam & Practical Use)
✅ Follow 3-2-1 backup rule
✅ Automate backups using scripts or software
✅ Maintain offsite and cloud copies
✅ Encrypt all backup data
✅ Perform regular restore drills
✅ Document backup schedule and responsibilities
✅ Integrate with BCP/DRP (Business Continuity and Disaster Recovery Plans)
🏁 16. Quick Revision Summary
| Topic | Key Point |
|---|---|
| Backup | Copy of data for safekeeping |
| Recovery | Restoring data after loss |
| Full / Incremental / Differential | Backup methods |
| RPO / RTO | Recovery objectives |
| 3-2-1 Rule | 3 copies, 2 media, 1 offsite |
| Cold/Warm/Hot Site | Disaster recovery site types |
| Testing | Must be done periodically |
| Regulation | RBI mandates secure, tested, offsite backups |
🧠 17. Easy Mnemonics for Memory
💾 Backup Formula:
“3 Copies – 2 Media – 1 Offsite”
⚡ Recovery Formula:
“RPO = Data Lost | RTO = Time to Restore”
🏦 Bank DR Sites:
- Primary Site: Main data center
- DR Site: Alternate site (replicated)
- Near DR / Far DR: Within city / different region
Backup & Recovery Strategies — MCQs
- The main purpose of a backup is to:
A. Increase storage use
B. Delete old data permanently
C. Create a copy of data so it can be restored if lost or corrupted
D. Encrypt data only
Answer: C - Recovery means:
A. Making duplicate data
B. Restoring lost or damaged data from the backup copy
C. Deleting corrupted files
D. Only archiving data
Answer: B - Which backup type copies all data each time?
A. Incremental
B. Differential
C. Full
D. Mirror
Answer: C - Which backup type only copies data changed since the last full backup?
A. Full
B. Incremental
C. Differential
D. Snapshot
Answer: C - Which backup type only copies data changed since the last backup of any type?
A. Differential
B. Incremental
C. Full
D. Mirror
Answer: B - The term RPO (Recovery Point Objective) refers to:
A. Maximum time allowed to restore systems
B. Maximum tolerable data loss (how far back you can recover)
C. Number of backups stored
D. Storage capacity of backup
Answer: B - The term RTO (Recovery Time Objective) refers to:
A. How far back in time data can be recovered
B. Maximum tolerable time to restore operations after an incident
C. Number of backup copies
D. Storage cost of backup
Answer: B - The “3-2-1 rule” for backups means:
A. 3 copies; on 2 different media; 1 offsite location
B. 3 backups per day; 2 full each; 1 incremental
C. 3 years retention; 2 months archive; 1 day online
D. None of the above
Answer: A - A hot site in Disaster Recovery (DR) terms is:
A. A site where hardware is stored but no data or systems preloaded
B. A site with full infrastructure and data replication ready for immediate cut-over
C. A site in the same building
D. Only for archival use
Answer: B - A cold site is:
A. Fully equipped with systems, ready to run immediately
B. Just infrastructure (power, cooling) but no installed systems/data
C. Fully mirrored to production site
D. None of the above
Answer: B - A warm site is:
A. No systems or data; just power & space
B. Full mirrored setup with real-time data
C. Partially equipped site with some systems/data and needs time to become operational
D. Same as cold site
Answer: C - In banking, backups need to be kept:
A. Only onsite
B. Offsite and secure, and tested regularly
C. Only on desktop PCs
D. Never encrypted
Answer: B - Incremental backup is typically:
A. Faster than full backup
B. Slower than full backup
C. Same speed as full backup
D. Not used in production
Answer: A - A mirror backup means:
A. Copying changed data only
B. Real-time copy of source data to another location
C. Copying only metadata
D. Full backups once a month
Answer: B - The best backup media for long-term archival in banking could be:
A. Same production server
B. Offsite tape or cloud archive
C. USB stick in branch
D. None
Answer: B - Which is a key challenge in backup & recovery?
A. Data growth and scalability
B. Very short retention periods
C. Always manual processes only
D. No regulatory obligations
Answer: A - Backup verification means:
A. Checking if the backup media is full
B. Ensuring the backup copies are valid and restorable
C. Encrypting the backup
D. Only storing the backup
Answer: B - Data deduplication in backup context is:
A. Deleting old backups
B. Removing duplicate data blocks to save storage space
C. Doubling the backups
D. None
Answer: B - Storing backup media in the same physical location as production is:
A. Good practice
B. Acceptable if encrypted
C. Generally not good — risk of location disaster
D. Always required
Answer: C - Which two metrics are most used when designing a backup/recovery strategy?
A. RTO & RPO
B. Storage size & number of tapes
C. Bandwidth & latency
D. CPU usage & memory usage
Answer: A - A full backup is done on Sunday. Then Monday through Friday you do incremental backups. On Saturday you restore. This is an example of the:
A. Grandfather-Father-Son rotation
B. Snapshot only strategy
C. Single tape reuse
D. None
Answer: A - Business Continuity Plan (BCP) and Disaster Recovery Plan (DRP) include backup & recovery. True or False?
A. True
B. False
Answer: A - Which of the following is not a backup type?
A. Full backup
B. Differential backup
C. Redundant backup
D. Incremental backup
Answer: C - If a bank system must be back up within 15 minutes of failure (RTO) and data loss must not exceed 5 minutes (RPO), the strategy may require:
A. Daily backup only
B. Real-time replication + offsite backup
C. Weekly full backup only
D. No backups
Answer: B - Which of these is an advantage of cloud backup?
A. Unlimited local storage only
B. Off-site, scalable and often lower cost
C. Requires no electricity
D. No internet required
Answer: B - Which is a best practice for backup media security?
A. Leaving tapes in open room
B. Using encryption, access control, secure transport
C. Only storing in user’s desktop
D. Never labeling media
Answer: B - For a bank’s core banking system, which backup strategy is most appropriate?
A. Monthly full only
B. Real-time replication + daily incremental + weekly full
C. No backup
D. Weekly full only
Answer: B - Offsite backup means:
A. On the same campus
B. At geographically separated location from primary site
C. Only within same building
D. None
Answer: B - What is versioning in backup context?
A. Making one copy
B. Keeping multiple dated versions of files/data so you can go back to a prior state
C. Deleting old files
D. Only full backups
Answer: B - Which backup strategy provides fastest restore time?
A. Incremental backup only
B. Full backup or mirror
C. Differential backup alone
D. No backup
Answer: B - What is a DR site?
A. Backup tape location
B. Alternate physical site to continue operations if primary site fails
C. User workstation
D. None
Answer: B - Which backup medium may be considered slowest to restore in banking scenario?
A. Disk
B. SSD
C. Tape
D. Cloud
Answer: C - Which of the following is considered a real-time data protection technique rather than traditional backup?
A. Snapshot backup
B. Continuous Data Protection (CDP) / replication
C. Weekly full backup
D. Monthly archive
Answer: B - Encryption of backup data is important because:
A. It slows down backup process
B. It protects sensitive data from unauthorised access if backup media is stolen or lost
C. It is optional and rarely necessary
D. None
Answer: B - Which of these is a common challenge when implementing backup strategy in banks?
A. Data explosion (large volume of data)
B. Low importance of data
C. No regulatory requirements
D. No network issues
Answer: A - The backup schedule defines:
A. How many staff are required
B. When and how often backups are executed
C. Only the backup media type
D. None
Answer: B - What is a “bare-metal backup”?
A. Backup of just user files
B. Backup that includes OS, applications and data so you can restore an entire system onto new hardware
C. Backup only of database logs
D. None
Answer: B - Which of these is NOT a suitable strategy for a bank’s Disaster Recovery?
A. Hot site with real-time replication
B. Cold site far away with no preloaded systems
C. No DR site, only onsite backup
D. Hybrid cloud DR
Answer: C - Regular restore drills are important because:
A. They ensure the backup copies are usable and the recovery plan works
B. They slow down production
C. They are optional
D. They cost nothing
Answer: A - What is data retention policy in the context of backup?
A. Time how long backup copies are kept before deletion
B. Only one copy kept forever
C. Delete immediately after backup
D. None
Answer: A - Which of the following can help reduce backup size?
A. Compression and deduplication
B. Only taking full backups
C. Storing all data onsite
D. No schedule
Answer: A - In case of ransomware attack, a bank’s backup strategy should ideally include:
A. No backups
B. Immutable backups + offsite copy + regular restore testing
C. Only local file copies
D. Only cloud backups with no versioning
Answer: B - Which of these backup types uses the least storage but slowest restore time?
A. Full backup
B. Incremental backup
C. Differential backup
D. Mirror backup
Answer: B - The DRP (Disaster Recovery Plan) is part of:
A. Only hardware maintenance plan
B. Overall Business Continuity Plan (BCP)
C. Only marketing strategy
D. None
Answer: B - Which of the following statements is correct?
A. Backup job success guarantees successful recovery
B. Backup job success does not guarantee recovery unless tested
C. Backups need never be tested
D. Backup and recovery are the same
Answer: B - A bank wanting to minimise data loss (RPO) might choose:
A. Weekly backup only
B. Real-time or near-real-time replication
C. Monthly archive only
D. No offsite copy
Answer: B - Which of the following is a logical backup?
A. Full disk image
B. Database export of schema and data
C. Tape copy of entire system
D. None
Answer: B - Which of the following is a physical backup?
A. Export of database tables into flat files
B. Block-level copy of database or filesystem (image)
C. Only printing reports
D. None
Answer: B - Off-site backups combined with geographical separation help to protect against:
A. Hardware failure only
B. Natural disasters (floods, earthquakes) and site‐wide outages
C. User error only
D. None
Answer: B - Which of these would be considered “immutable backup”?
A. Backup that can be modified later
B. Backup that cannot be altered or deleted except by authorised process
C. Backup only kept for one day
D. None
Answer: B - What is “snapshot” in backup strategy?
A. A point-in-time image of data or system
B. Incremental changes only
C. Old report print
D. None
Answer: A - The archive log mode in database backup enables:
A. No data recovery possible
B. Point-in-time recovery and continuous archiving of transaction logs
C. Only full backup
D. None
Answer: B - Which of these backup retention strategies is common for regulatory compliance in banks?
A. Delete after one day
B. Keep multiple versions (e.g., daily, weekly, monthly backups) for a defined period
C. No retention policy
D. Overwrite backups daily
Answer: B - Which of these should be part of a bank’s backup & recovery policy?
A. Schedule, responsibilities, media management, encryption, access control
B. Only schedule
C. Only media type
D. None
Answer: A - Backup to the cloud offers benefit of:
A. No internet needed
B. Scalability, off-site, possible cost benefits
C. Only for personal data
D. None
Answer: B - A vaulted backup site refers to:
A. Same building storage
B. A highly secure off-site location, often physically protected (fireproof, climate controlled)
C. USB stick in branch safe
D. None
Answer: B - Which of the following best describes continuous replication?
A. Copying data nightly
B. Real-time or near real-time copying of data to a remote site
C. Only weekly copies
D. No copies
Answer: B - The term business impact analysis (BIA) is part of DR strategy and involves:
A. Identifying key business processes and how outages would affect them
B. Data entry only
C. Marketing research
D. None
Answer: A - Which of these is part of backup media management?
A. Tracking tape serial numbers
B. Logging who accessed backup media
C. Storing media under proper environmental conditions
D. All of the above
Answer: D - Which of the following is not core to recovery readiness?
A. Having backup copies
B. Regular restore testing and drills
C. Documented recovery procedures
D. Keeping same backups and never verifying them
Answer: D