nerdexam
(ISC)2

CISSP · Question #687

The adoption of an enterprise-wide Business Continuity (BC) program requires which of the following?

The correct answer is A. Good communication throughout the organization. Adopting an enterprise-wide Business Continuity program fundamentally depends on organizational buy-in and coordination, which requires effective communication across all levels and departments.

Submitted by amina.ke· Mar 5, 2026Security and Risk Management

Question

The adoption of an enterprise-wide Business Continuity (BC) program requires which of the following?

Options

  • AGood communication throughout the organization
  • BA completed Business Impact Analysis (BIA)
  • CFormation of Disaster Recovery (DR) project team
  • DWell-documented information asset classification

How the community answered

(51 responses)
  • A
    82% (42)
  • B
    6% (3)
  • C
    2% (1)
  • D
    10% (5)

Why each option

Adopting an enterprise-wide Business Continuity program fundamentally depends on organizational buy-in and coordination, which requires effective communication across all levels and departments.

AGood communication throughout the organizationCorrect

An enterprise-wide BC program spans all departments, leadership levels, and stakeholders, making good communication the foundational requirement for gaining sponsorship, aligning objectives, and ensuring consistent policy adoption. Without organization-wide communication, BC efforts remain siloed and fail to achieve the cross-functional integration that defines a true enterprise program. Communication enables awareness, commitment, and coordination - prerequisites before any technical or analytical components can succeed.

BA completed Business Impact Analysis (BIA)

A completed BIA is an important component within a BC program, but it is a deliverable produced after the program is initiated, not a prerequisite for adopting the program enterprise-wide.

CFormation of Disaster Recovery (DR) project team

A DR project team is a subset function that supports BC objectives but focuses on IT recovery; forming it is a downstream activity, not the overarching requirement for enterprise BC adoption.

DWell-documented information asset classification

Information asset classification supports risk assessment and BIA activities, but it is a specific technical input to BC planning rather than the foundational requirement for enterprise-wide BC program adoption.

Concept tested: Enterprise Business Continuity program adoption prerequisites

Source: https://www.isaca.org/resources/isaca-journal/past-issues/2013/business-continuity-management-and-its-relationship-to-information-security

Topics

#business continuity#program management#organizational communication

Community Discussion

No community discussion yet for this question.

Full CISSP Practice