(ISC)2(ISC)2
CSSLP · Question #204
CSSLP Question #204: Real Exam Question with Answer & Explanation
The correct answer is C: Business impact analysis. Business impact analysis (BIA) is the process that identifies critical business functions and the potential impact of disruptions on those operations, thereby uncovering threats to business continuity.
Secure Software Deployment, Operations, Maintenance
Question
Which of the following processes identifies the threats that can impact the business continuity of operations?
Options
- AFunction analysis
- BRisk analysis
- CBusiness impact analysis
- DRequirement analysis
Explanation
Business impact analysis (BIA) is the process that identifies critical business functions and the potential impact of disruptions on those operations, thereby uncovering threats to business continuity.
Common mistakes.
- A. Function analysis focuses on the purpose and operation of a system or process, but it does not specifically identify threats to business continuity or analyze their impact.
- B. Risk analysis is a broader process that identifies, assesses, and prioritizes risks, but BIA specifically focuses on the impact of disruptions on business operations and continuity.
- D. Requirement analysis is concerned with defining the needs and conditions for a new or modified product or system, not with identifying threats to existing business continuity.
Concept tested. Business continuity planning processes
Topics
#Business Continuity#Business Impact Analysis#Threat Identification#Operations Security
Community Discussion
No community discussion yet for this question.