nerdexam
(ISC)2

CISSP · Question #82

At a MINIMUM, a formal review of any Disaster Recovery Plan (DRP) should be conducted

The correct answer is C. annually.. A formal review of any Disaster Recovery Plan (DRP) should be conducted at a minimum annually, or more frequently if there are significant changes in the business environment, the IT infrastructure, the security threats, or the regulatory requirements. A formal review involves ev

Submitted by the_admin· Mar 5, 2026Security Operations

Question

At a MINIMUM, a formal review of any Disaster Recovery Plan (DRP) should be conducted

Options

  • Amonthly.
  • Bquarterly.
  • Cannually.
  • Dbi-annually.

How the community answered

(21 responses)
  • A
    5% (1)
  • C
    90% (19)
  • D
    5% (1)

Explanation

A formal review of any Disaster Recovery Plan (DRP) should be conducted at a minimum annually, or more frequently if there are significant changes in the business environment, the IT infrastructure, the security threats, or the regulatory requirements. A formal review involves evaluating the DRP against the current business needs, objectives, and risks, and ensuring that the DRP is updated, accurate, complete, and consistent. A formal review also involves testing the DRP to verify its effectiveness and feasibility, and identifying any gaps or weaknesses that need to be addressed.

Topics

#DRP review#disaster recovery planning#business continuity

Community Discussion

No community discussion yet for this question.

Full CISSP Practice