nerdexam
ExamsCERTIFIED-IN-CYBERSECURITYQuestions#118
(ISC)2(ISC)2

CERTIFIED-IN-CYBERSECURITY · Question #118

CERTIFIED-IN-CYBERSECURITY Question #118: Real Exam Question with Answer & Explanation

The correct answer is C: To sustain business operations while recovering from a disruption. The primary objective of a Business Continuity Plan (BCP) is to maintain business operations while recovering from a disruption (see Chapter 2 ISC2 Study Guide, Module 4, under Terms and Definitions). A BCP is designed to ensure that critical business functions continue during a

Business Continuity (BC), Disaster Recovery (DR) & Incident Response (IR) Concepts

Question

The primary objective of a Business Continuity Plan (BCP) is:

Options

  • ATo restore the business to the full last-known reliable state of operations
  • BTo regularly audit whether the organization complies with applicable regulations
  • CTo sustain business operations while recovering from a disruption
  • DTo assess the impact of disruption to the business

Explanation

The primary objective of a Business Continuity Plan (BCP) is to maintain business operations while recovering from a disruption (see Chapter 2 ISC2 Study Guide, Module 4, under Terms and Definitions). A BCP is designed to ensure that critical business functions continue during a crisis and that the organization can recover effectively. For example, suppose a company's headquarters is damaged by a natural disaster. In this case, a well-prepared BCP might include moving operations to a secondary location or having employees work from home to ensure that business operations are not disrupted. The remaining options, while important aspects of an organization's overall risk management strategy, are not the primary objective of a business continuity plan (BCP). Restoring the business to its last known reliable operating state is the goal of a disaster recovery plan, not a BCP. A Disaster Recovery Plan focuses more on restoring the IT infrastructure and systems to their pre-disaster state. In contrast, a BCP focuses on ensuring that critical business operations continue during and after a disruption. Assessing the impact of a disruption is then part of risk analysis, which is a component of business continuity planning but not its primary objective. Risk analysis helps identify potential threats and vulnerabilities and the impact they could have on the business, but the primary goal of a BCP is to outline how the business will continue to operate during and after a disruption. Finally, compliance management is the regular review of the organization's compliance with applicable regulations.

Topics

#Business Continuity Plan#Disaster Recovery#Risk Management

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full CERTIFIED-IN-CYBERSECURITY PracticeBrowse All CERTIFIED-IN-CYBERSECURITY Questions