key security controls. How you could effectively manage this task (236) 11. What are the basic categories commonly used in classifying documentation Explain. Documentation maybe classified into three basic categories Administrative documentation Describes the standards and procedures for data processing. Systems documentation Describes each application system and its key processing functions. Operating documentation: Describes what is needed to run a program. 12. What is disaster recovery plan Why it is necessary to maintain Disaster Recovery Plan Minimize the extent of disruption, damage, and loss Temporarily establish an alternative means of processing information Resume normal operations as soon as possible Train and familiarize personnel with emergency operations Priorities for the recovery process Insurance Backup data and program files o Electronic vaulting o Grandfather-father-son concept o Rollback procedures Specific assignments Backup computer and telecommunication facilities Periodic testing and revision Complete documentation 13. Point out Institute of Internal Auditors five audit scope standards outlining the Internal
