Which of the following are steps in conducting a business impact analysis (bia)?

Which of the following are PRIMARY elements that are required when designing a Disaster Recovery Plan (DRP)?
A. Back-up procedures, off-site storage, and data recover.
B. Steering committee, emergency response team, and reconstruction
C. Impact assessment, recover strategy, and testing.
D. Insurance coverage, alternate site, and manual procedures.

C. Impact assessment, recover strategy, and testing.

What assesses potential loss that could be caused by a disaster?
A. The Business Assessment (BA)
B. The Business Impact Analysis (BIA)
C. The Risk Assessment (RA)
D. The Business Continuity Plan (BCP)

B. The Business Impact Analysis (BIA)

Which of the following is NOT a major element of Business Continuity Planning?
A. Creation of a BCP committee
B. Business Impact Assessment (BIA)
C. Business Continuity Plan Development
D. Scope plan initiation

A. Creation of a BCP committee

Which one of the following is a core infrastructure and service element of Business Continuity Planning (BCP) required to effectively support the business processes of an organization?
A. Internal and external support functions.
B. The change management process.
C. The risk management process.
D. Backup and restoration functions.

C. The risk management process.

Which task below would normally be considered a BCP task, rather than a DRP task?
A. Recovery procedures
B. Life safety processes
C. Project scoping
D. Restoration procedures

What is the purpose of the Business Impact Assessment (BIA)?
A. To define a strategy to minimize the effect of disturbances and to allow for the resumption of
business processes
B. To emphasize the organizations commitment to its employees and vendors
C. To create a document to be used to help understand what impact a disruptive event would have on the business
D. To work with executive management to establish a DRP policy

C. To create a document to be used to help understand what impact a disruptive event would have on the business

Which choice below is incorrect regarding when a BCP, DRP, or emergency management plan should be evaluated and modified?

A. Annually, in a scheduled review.
B. Never; once it has been tested it should not be changed.
C. After an emergency or disaster response.
D. After training drills, tests, or exercises.

A. Annually, in a scheduled review.

Which of the following steps is NOT one of the four steps of a Business Impact Analysis (BIA)?
A. Notifying senior management
B. Gathering the needed assessment materials
C. Performing the vulnerability assessment
D. Analyzing the information compiled

A. Notifying senior management

What methodology is commonly used in Business Continuity Program?
A. Work Group Recovery
B. Business Impact Analysis
C. Qualitative Risk Analysis
D. Quantitative Risk Analysis

B. Business Impact Analysis

Which of the following steps should be performed first in a business impact analysis (BIA)?
A. Identify all business units within the organization
B. Evaluate the impact of the disruptive events
C. Estimate the Recovery Time Objectives (RTO)
D. Evaluate the criticality of business functions

A. Identify all business units within the organization

A Business Impact Analysis (BIA) does not:
A. Recommend the appropriate recovery solution
B. Determine critical and necessary business functions and their resource dependencies
C. Identify critical computer applications and the associated outage tolerance
D. Estimate the financial and operation impact of a disruption

A. Recommend the appropriate recovery solution

COOP Continuity of Operations Plan

A. Is designed to respond to disruptive cyber events
B. Is designed to provide effective coordination among the managers of the organization in the event of an emergency or disruptive event
C.Prove procedures and capabilities to sustain an organization’s essential, strategic functions at an alternate site
D. Provides the “response procedures for occupants of a facility in the event of a situation posing a potential threat

C.Prove procedures and capabilities to sustain an organization’s essential, strategic functions at an alternate site

Details the steps required to restore normal business the Details the steps required to restore normal business operations after recovering from a disruptive event.
a. Cyber Incident Response Plan
b. Occupant Emergency Plan
c. Business Recovery Plan
d. Crisis Management Plan

Emphasizing IT over general business support. Provide procedures and capabilities for recovering a major application.
a. Cyber Incident Response Plan
b. Occupant Emergency Plan
c. Continuity of Support Plan
d. Crisis Management Plan tion or general support system

Continuity of Support Plan

Is designed to respond to disruptive cyber events
a. Cyber Incident Response Plan
b. Occupant Emergency Plan
c. Continuity of Support Plan
d. Crisis Management Plan tion or general support system

a. Cyber Incident Response Plan

Provides the “response procedures for occupants of a facility in the event of a situation posing a potential threat
a. Cyber Incident Response Plan
b. Occupant Emergency Plan
c. Continuity of Support Plan
d. Crisis Management Plan tion or general support system

Is designed to provide effective coordination among the managers of the organization in the event of an emergency or disruptive event

a. Crisis Management Plan
b. Continuity of Support Plan
c. Crisis Management Plan tion or general support system
d. Occupant Emergency Plan

What are the steps in performing BIA?

Which of the following are steps in conducting a business impact analysis BIA?

What are the three steps that should be performed in a business impact analysis BIA )?

Which of the following is the sixth step of a business impact analysis BIA process?