top of page
71OMr0D4FrL._SL1500_.jpg
119159849_10158061653118813_5314694876572739015_n.jpg
71eSH5cSYiL._SL1377_.jpg
final.png

CISSP Study Plan – Day 35 of 55 | MTD, RPO, and RTO

Updated: 1 day ago


“To anyone reading this — if you don't understand BCP/DRP for the CISSP, you will fail the exam. Yani made sure he knew it completely.” – Luke Ahmed


Today is Day 35 of Yihenew’s CISSP study plan, focusing on three of the most exam-critical metrics in Business Continuity and Disaster Recovery (BCP/DRP) — MTD, RPO, and RTO.

These terms aren’t just definitions — they are management decisions about how much downtime and data loss your organization can afford before the business starts losing money or reputation.


Key Areas Covered in the CISSP Study Plan

  • MTD (Maximum Tolerable Downtime) — The longest time a business process can be unavailable before causing irreversible damage. It defines the limit of acceptable loss.

  • RTO (Recovery Time Objective) — The target time to restore a system, application, or process after an outage. It’s derived from the MTD.

  • RPO (Recovery Point Objective) — The acceptable amount of data loss measured in time. For example, an RPO of 4 hours means the organization can lose up to 4 hours of data.

  • How They Relate:

    • MTD = Business Tolerance Limit

    • RTO = Technical Recovery Goal

    • RPO = Data Loss Window

  • Practical Example:

    • A financial institution might have:

      • MTD = 8 hours (total downtime limit)

      • RTO = 4 hours (restore within 4)

      • RPO = 15 minutes (data backup frequency)


CISSP Exam Tie-In

These metrics show up in scenario-based questions that test your ability to think like management:

  • CISSP wants you to determine which process to recover first, how long you can be down, and how much data you can afford to lose.

  • If you see the word “tolerable”, think MTD.

  • If you see “restore”, think RTO.

  • If you see “data loss window”, think RPO.

You’ll likely get one or two questions testing these concepts under different disguises — always read carefully for the key term in context.


Quick CISSP Practice Question

Which of the following metrics defines the maximum acceptable amount of data loss measured in time?

A. MTD

B. RTO

C. RPO

D. WRT


Correct Answer: C. RPO

Explanation:RPO (Recovery Point Objective) specifies the maximum acceptable data loss window — how far back you can restore data after a disruption. MTD measures overall tolerance, and RTO defines how quickly operations must resume.


Think Like a Manager:CISSP questions about recovery are business decisions disguised as technical metrics. Always start with what’s tolerable to management, not what’s convenient for IT.


Check out Yani's TikTok or see Day 34 or Day 36.


👉 Can you take the Yani Challenge?


55 days of consistent CISSP prep, tackling one domain at a time, using only the resources below:


Course

Luke's CISSP Course (2 months access, $89.98)

One-to-one Zoom sessions with Luke Ahmed (2 weeks before exam)


Books, Notes, and Practice Questions

Sybex 10th Edition (Around $52.55)



Total Cost: approxiamately $250 depending on your geographic location. Yani is located in East Africa.


📚 Study Plan (55 Days of Dedication):

- Weekdays: 2–3 hours of focused study—late nights and early mornings (5 AM).

- Weekends: 5–6 hours of deep study sessions.


Pass CISSP in first attempt within 100 questions.


Yani's biggest expense was his time, committment, consistency, and dedication! It was worth it because he passed first attempt in 100 questions using the above resources only.


If Yihenew could do it, so can you.


All the best Future CISSP. You can feel free to contact me anytime as well.


Thank you.

Luke Ahmed

 
 
  • Youtube
  • Instagram
  • Linkedin
  • Facebook
  • TikTok
bottom of page