CISSP Certification Prep Test- Business Continuity

Reviewed by Editorial Team
The ProProfs editorial team is comprised of experienced subject matter experts. They've collectively created over 10,000 quizzes and lessons, serving over 100 million users. Our team includes in-house content moderators and subject matter experts, as well as a global network of rigorously trained contributors. All adhere to our comprehensive editorial guidelines, ensuring the delivery of high-quality content.
Learn about Our Editorial Process
| By Cindymurray
C
Cindymurray
Community Contributor
Quizzes Created: 8 | Total Attempts: 15,187
| Attempts: 1,128 | Questions: 17
Please wait...
Question 1 / 17
0 %
0/100
Score 0/100
1. The term RTO means:

Explanation

All applications need to be classified as to their time sensitivity for recovery even if those applications do not support business functions that are time-sensitive. For applications, this is commonly referred to as recovery time objective (RTO) or maximum tolerable downtime (MTD).

Submit
Please wait...
About This Quiz
CISSP Certification Prep Test- Business Continuity - Quiz

This CISSP Certification Prep Test focuses on Business Continuity, assessing knowledge in disaster recovery planning, legal requirements, and risk management. It is essential for professionals aiming to ensure organizational resilience.

Personalize your quiz and earn a certificate with your name on it!
2. A business continuity plan should be updated and maintained:

Explanation

The plan document and all related procedures will need to be updated after each exercise and after each material change to the production, IT, or business environment. The procedures should be reviewed every three months and the formal audit of the procedures should be conducted annually.

Submit
3. Which of the following methods is not acceptable for exercising the business continuity plan?

Explanation

Th e only difference between a simulated and an actual exercise is that the first rule of testing is the planner will never create a disaster by testing for one. The planner must make every effort to make certain that what is being tested will not impact the production environment whether business or technical.

Submit
4. Which of the following is the primary desired result of any well-planned business continuity exercise?

Explanation

After every exercise the planner conducts, the exercise results need to be published and action items identified to address the issues that were uncovered by the exercise. Action items should be tracked until they have been resolved and, where appropriate, the plan updated. It is very unfortunate when an organization has the same issue in subsequent tests simply because someone did not update the plan.

Submit
5. Which of the following terms best describes the effort to determine the consequence of disruptions that could result from a disaster?

Explanation

The BIA is what is going to help the company decide what needs to be recovered and how quickly it needs to be recovered.

Submit
6. A key advantage of using a cold site as a recovery option is that it_______________________.

Explanation

Among the advantages of warm and cold sites are that they are less expensive and available for longer recoveries.

Submit
7. The reason to implement additional controls or safeguards is to:

Explanation

Preventing a disaster is always better than trying to recover from one. If the planner can recommend controls to be put in place to prevent the most likely risks from having an impact on the organization’s ability to do business, then the planner will have fewer actual events to recover from.

Submit
8. One of the advantages of a hot site recovery solution is:

Explanation

Among the advantages of internal or external hot sites are allows recovery to be tested, highly available, and the site can be operational within hours.

Submit
9. If a company wants the most efficient restore from tape backup:

Explanation

If a company wants the backup and recovery strategy to be as simple as possible, then it should only use full backups. They take more time and hard drive space to perform but they are the most efficient in recovery.

Submit
10. Which phrase best defines a business continuity/disaster recovery plan?

Explanation

d. Business continuity planning (BCP) and Disaster recovery planning (DRP) address the preparation, processes, and practices required to ensure the preservation of the business in the face of major disruptions to normal business operations.

Submit
11. Regardless of industry, which element of legal and regulatory requirements are all industries subject to?

Explanation

Regulatory risk is clearly defined by the industry the organization is a part of. However, no matter what industry the planner is in, what is commonly referred to as the prudent man rule applies: exercise the same care in managing company affairs as in managing one’s own affairs.

Submit
12. During the risk analysis phase of the planning, which of the following actions could manage threats or mitigate the effects of an event?

Explanation

The third element of risk is mitigating factors. Mitigating factors are the controls or safeguards the planner will put in place to reduce the impact of a threat.

Submit
13. Which of the following statements most accurately describes business impact?

Explanation

All business functions and the technology that supports them need to be classified based on their recovery priority. Recovery time frames for business operations are driven by the consequences of not performing the function. The consequences may be the result of business lost during the down period; contractual commitments not met resulting in fines or lawsuits, lost goodwill with customers, etc.

Submit
14. The elements of risk are as follows:

Explanation

There are three elements of risk: threats, assets, and mitigating factors.

Submit
15. The term disaster recovery commonly refers to:

Explanation

Once computers became part of the business landscape, it quickly became clear that we could not return to our manual processes if our computers failed. If those computer systems failed, there were not enough people to do the work nor did the people in the business still have the skill to do it manually anymore. This was the start of the disaster recovery industry. Still today, the term “disaster recovery” or “DR” commonly means the recovery of the technology environment.

Submit
16. Which of the following statements best describe the extent to which an organization should address business continuity or disaster recovery planning?

Explanation

Business continuity planning and Disaster recovery planning
involve the identifi cation, selection, implementation, testing, and updating of

Submit
17. Business impact analysis is performed to identify:

Explanation

The business impact analysis is what is going to help the company decide what needs to be recovered and how quickly it needs to be recovered.

Submit
View My Results

Quiz Review Timeline (Updated): Mar 21, 2023 +

Our quizzes are rigorously reviewed, monitored and continuously updated by our expert board to maintain accuracy, relevance, and timeliness.

  • Current Version
  • Mar 21, 2023
    Quiz Edited by
    ProProfs Editorial Team
  • Dec 21, 2012
    Quiz Created by
    Cindymurray
Cancel
  • All
    All (17)
  • Unanswered
    Unanswered ()
  • Answered
    Answered ()
The term RTO means:
A business continuity plan should be updated and maintained:
Which of the following methods is not acceptable for exercising the...
Which of the following is the primary desired result of any...
Which of the following terms best describes the effort to determine...
A key advantage of using a cold site as a recovery option is that...
The reason to implement additional controls or safeguards is to:
One of the advantages of a hot site recovery solution is:
If a company wants the most efficient restore from tape backup:
Which phrase best defines a business continuity/disaster recovery...
Regardless of industry, which element of legal and regulatory...
During the risk analysis phase of the planning, which of the following...
Which of the following statements most accurately describes business...
The elements of risk are as follows:
The term disaster recovery commonly refers to:
Which of the following statements best describe the extent to which an...
Business impact analysis is performed to identify:
Alert!

Advertisement