CISSP-ISSMP · Question #70
Andy works as a security manager for SoftTech Inc. He is involved in the BIA phase to create a document to be used to help understand what impact a disruptive event would have on the business. Choose
The correct answer is A. Gathering the needed assessment materials. B. Performing the vulnerability assessment. C. Analyzing the information compiled. D. Documenting the results and presenting recommendations.. A Business Impact Analysis (BIA) identifies how disruptive events affect critical business functions and resources. The correct sequential steps are: (A) Gather the needed assessment materials - collect documentation on business processes, dependencies, and resources; (B) Perform
Question
Exhibit
Options
- AGathering the needed assessment materials.
- BPerforming the vulnerability assessment.
- CAnalyzing the information compiled.
- DDocumenting the results and presenting recommendations.
How the community answered
(36 responses)- A100% (36)
Explanation
A Business Impact Analysis (BIA) identifies how disruptive events affect critical business functions and resources. The correct sequential steps are: (A) Gather the needed assessment materials - collect documentation on business processes, dependencies, and resources; (B) Perform the vulnerability assessment - identify threats and weaknesses that could cause disruptions; (C) Analyze the information compiled - determine the impact severity, Recovery Time Objectives (RTO), and Recovery Point Objectives (RPO) for critical functions; and (D) Document the results and present recommendations - produce the formal BIA report with findings, prioritized risks, and recovery strategy recommendations for leadership.
Topics
Community Discussion
No community discussion yet for this question.
