Advertisement Area

1. Which choice below is the first priority in an emergency ?

  1. Communicating to employees' families the ststus of the emergency
  2. Notifying external support resources of recovery and restoration
  3. Protecting the health and safety of everyone in the facility
  4. Warning customers and contractors of a potential interruption of service

Answer: C

Hint: Life safety, or protecting the healh and safety of everyone in the facility, is the first priority in an emergency or disaster.

2. Which choice below is NOT considered an appropriate role for senior management in the business continuity and disaster recovery process?

  1. Delegate recovery roles
  2. Publicly praise successes
  3. Closely control media and analyst communications
  4. Assess the adequacy of information security during the disaster recovery

Answer: D

Hint: The tactical assessment of information security is a role of information management or technology management, not senior management.

3. Why is it so important to test disaster recovery plans frequently ?

  1. The businesses that provide subscription services might have changed ownership.
  2. A plan is not considered viable until a test has been performed.
  3. Employees might get bored with the planning process.
  4. Natural disasters can change frequently.

Answer: B

Hint: A plan is not considered functioning and viable until a test has been performed. An untested plan sitting on a shelf is useless and might even have the reverse effect of creating a false sense of security. While the other answers, especially A, are good reasons to test, B is the primary reason.

4. Which disaster recovery/emergency management plan-testing type below is considered the most cost-effective and efficient way to identify areas of overlap in the plan before conducting more demanding training exercises ?

  1. Full-scale exercise
  2. Walk-through drill
  3. Table-top exercise test
  4. Evacuation drill

Answer: C

Hint: In a table-top exercise, members of the emergency management group meet in a conference room setting to discuss their responsibilities and how they would react to emergency scenarios.

5. Which type of backup subscription service will allow a business to recover quickest ?

  1. A hot site
  2. A mobile or rolling backup service
  3. A cold site
  4. A warm site

Answer: A

Hint: Warm and cold sites require more work after the event occurs to get them to full operating functionality. A mobile backup site might be useful for specific types of minor outages, but a hot site is still the main choice of backup processing site.

6. Which choice below represents the most important first step in creating a business resumption plan?

  1. Performing a risk analysis
  2. Obtaining senior management sopport
  3. Analyzing the business impact
  4. Planning recovery strategies

Answer: B

Hint: The business resumption, or business continuity plan, must have total, highly visible senior management support.

7. What could be a major disadvantage to a n-mutual aid or reciprocal type of backup service agreement?

  1. It is free or at a low cost to the organization.
  2. The use of prefabricated buildings makes recovery easier.
  3. In a major emergency,the site might not have the capacity to handle the operations required.
  4. Annual testing by the Info Tech department is required to maintain the site.

Answer: C

Hint: The site might not have the capacity to handle the operations required during a mahjor disruptive event. While mutual aid mightbe a good system for sharing resources during a small or isolated outage, a major natural or other type of disaster can create serious resource contention between the two organizations.

8. In developing an emergency or recovery plan, which choice below would NOT be considered a short-term objective ?

  1. Priorities for restoration
  2. Acceptable downtime before restoration
  3. Minimum resources needed to accomplish the restoration
  4. The organization's strategic plan

Answer: D

Hint: The organization's strategic plan is considered a long-term goal.

9. When is the disaster considered to be officially over ?

  1. When the danger has passed and the disaster has been contained
  2. When the organization has processing up and running at the alternate site
  3. When all of the elements of the business have returned to normal functioning at the original site
  4. When all employees have been financially reimbursed for their expenses

Answer: C

Hint: The disaster is officially over when all of the elements of the business have returned to normal functioning at the original site. It's important to remember that a threat to continuity exists when processing is being returned to its original site after salvage and cleanup has been done.

10. When should the public and media be informed about a disaster ?

  1. Whenever site emergencies extend beyond the facility
  2. When any emergency occurs at the facility, internally or externally
  3. When the public's health or safety is in danger
  4. When the disaster has been contained

Answer: A

Hint: When an emergency occurs that could potentially have an impact outside the facility, the public must be informed, regardless of whether there is any immediate threat to public safety.

11. What is the number one priorty of disaster response ?

  1. Resuming transaction processing
  2. Personnel safety
  3. Protecting the hardware
  4. Protecting the software

Answer: B

Hint: The number one function of all disaster response and recovery is the protection of the safety of people; alloher concerns are vital to business continuity but are secondary to personnel safety.

12. Which choice below is the BEST description of the criticality prioritization goal of the Business Impact Assessment (BIA) process ?

  1. The identification and prioritization of every critical business unit process
  2. The identification of the resource requirements of the critical business unit processes
  3. The estimation of the maximum downtime the business can tolerate
  4. The presentation of the documentation of the results of the BLA

Answer: A

Hint: The three primary goals of a BLA are criticality prioritixation, maximum down time estimation, and identification of critical resource requirements. Answer D is a distracter.

13. Which choice below most accurately describes a business impact analysis (BIA)?

  1. A program that implements the strategic goals of the organization
  2. A management-level analysis that identifies the impact of losing an entity's resources
  3. A prearranged agreement between two or more entities to provide assistance
  4. Activities designed to return an organization to an acceptable operating condition

Answer: B

Hint: A business impact analysis (BIA) measures the effect of resource loss and escalating losses over time in order to provide the entity with reliable data upon which to base decisions on hazard mitigation and continuity planning. Answer A is a definition of a disaster/emergency management program. Answer C describes a mutual aid agreement. Answer D is the definition of a recovery program.

14. What is considered the major disadvantage to employing a hot site for disaster recovery ?

  1. Exclusivity is assured for processing at the site.
  2. Maintaining the site is expensive.
  3. The site is immediately available for recovery.
  4. Annual testing is required to maintain the site.

Answer: B

Hint: A hot site is commonly used for those extremely time-critical functions that the business must have up and running to continue operating, but the wxpense of duplicating and maintaining all of the hardware, software, and application elements is a serious resource drain to most organizations.

15. Which choice below is NOT considered an appropriate role for Financial Management in the business continuity and disaster recovery process ?

  1. Tracking the recovery costs.
  2. Monitoring employee morale and guarding against burnout
  3. Formally notifying insurers of claims
  4. Reassessing cash flow projections

Answer: B

Hint: Monitoring employee morale and guarding against employee burnout during a disaster recovery event is the proper role of human resources.

16. Which choice below is the MOST accurate description of a warm site?

  1. A backup processing facility with adequate electrical wiring and air conditioning but no hardware or software installed
  2. A backup processing facility with most hardware and software installed, which can be operational within a matter of days
  3. A backup processing facility with most hardware and software installed and 100% compatible with the original site, operational within hours
  4. A mobile trailer with portable generators and air conditioning

Answer: B

17. Which of the following is NOT one of the five disaster recovery plan testing types ?

  1. Simulation
  2. Checklist
  3. Mobile
  4. Full Interruption

Answer: C

18. Which choice below is an example of a portential hazard due to a technological event, rather than a human event?

  1. Sabotage
  2. Financial collapse
  3. Mass hysteria
  4. Enemy attack

Answer: B

Hint: A financial collapse is considered a technological potential hazard, whereas the other three are human events.

19. Which of the following is NOT considered an element of a backup alternative ?

  1. Electronic vaulting
  2. Remote journling
  3. Warm site
  4. Checklist

Answer: D

Hint: A checklist is a type of disaster recovery plan test. Electronic vaulting is the batch transfer of backup data to an offsite location. Remote journaling is the parallel processing of transactions to an alternate site. A warm site is a backup-processing alternative.

20. Which choice below refers to a business asset ?

  1. Events or situations that could cause a financial or operational impact to the organization
  2. Protection devices or procedures in place that reduce the effects of threats
  3. Competitive advantage, credibility, or good will
  4. Personnel compensation and retirement programs

Answer: C

Hint: Answer A is a definition for a threat. Answer B is a description of mitigating factors thhat reduce the efect of a threat, such as a UPS, sprinkler systems, or generators. Answer D is a distracter.

21. Which statement below is NOT correct regarding the role of the recovery team during the disaster?

  1. The recovery team must be the same as the salvage team as they perform the same function.
  2. The recovery team is often separate from the salvage team as they perform different duties.
  3. The recovery team's primary task is to get predefined critical business functions operating at the alternate processing site.
  4. The recovery team will need full access to all backup media.

Answer: A

Hint: The recovery team performs different functions from the salvage team. The recovery team's primary mandate is to get critical processing reestablished at an alternate site. The salvage team's primary mandate is to return the original processing site to normal processing environmental conditions.

22. Which choice below is incorrect regarding when a BCP, DRP, or emergency management plan should be evaluted and modified?

  1. Never, once it has been fully tested it should not be changed.
  2. Annually, in a scheduled review.
  3. After training drills, tests, or exercises.
  4. After an emergency or disaster response.

Answer: A

Hint: Emergency management plans, business continuity plans, and disaster recovery plans should be regularly reviewed, evaluated,modified, and updated. At a minimum, the plan should be reviewed at an annual audit.

23. When should security isolation of the incident scene start ?

  1. Immediately after the emergency is discovered
  2. As soon as the disaster plan is implemented
  3. After all personnel have been evacuated
  4. When hazardous materials have been discovered at the site

Answer: A

Hint: Isolation of the incident scene should begin as soon as the emergency has been discovered.

24. Which choice below is NOt a recommended step to take when resuming normal operations after an emergency?

  1. Reoccupy the damaged building as soon as possible.
  2. Account for all damage-related costs.
  3. Protect undamaged property.
  4. Conduct an investigation.

Answer: A

Hint: Reoccupying the site of a disaster or emergency should not be undertaken until a full safety inspection has been done, an investigation into the cause of the emergency has been completed, and all damaged property has been salvaged and restored.

25. Which choice below would NOT be a good reason to test the disaster recovery plan ?

  1. Testing verifies the processing capability of the alternate backup site.
  2. Testing allows processing to continue at the database shadowing facility.
  3. Testing prepares and trains the personnel to execute their emergency duties.
  4. Testing identifies deficiencies in the recovery procedures.

Answer: B

Hint: The other three answers are good reasons to test the disaster recovery plan.

26. Which statement below is NOT true about the post-disaster salvage team?

  1. The salvage team must return to the site as soon as possible regardless of the residual physical danger.
  2. The salvage team manages the cleaning of equipment after smoke damage.
  3. The salvage team identifies sources of expertise to employ in the recovery of equipment or supplies.
  4. The salvage team may be given the authority to declare when operations can resume at the disaster site.

Answer: A

Hint: Salvage cannot begin until all physical danger has been removed or mitigated and emergency personnel have returned control of the site to the organization.

27. Which statement below is the most accurate about the results of the disaster recovery plan test?

  1. If no deficiencies were found during the test, then the plan is probably perfect.
  2. The results of the test should be kept secret.
  3. If no deficiencies were found during the test, then the test was probably flawed.
  4. The plan should not be changed no matter what the results of the test.

Answer: C

Hint: The purpose of the test is to find weaknesses in the plan. Every plan has weaknesses. After the test, all parties should be advised of the results, and the plan should be uodated to reflect the new information.

28. Which statement is true regarding the disbursement of funds during and after a disruptive event?

  1. Because access to funds is rarely an issue during a disaster, no special arrangements need to be made.
  2. No one but the finance department should ever disburse funds during or after a disruptive event.
  3. In the event senior-level or financial management is unable to disburse funds normally, the company will need to file for bankruptcy.
  4. Authorized, signed checks should be stored securely off-site for access by lower-level managers in the event senior-level or financial management is unable funds normally.

Answer: D

Hint: Authorized, signed checks should be stored securely off-site for access by lower-level managers in the event senior-level or financial management is unable to disburse funds normally,

29. Which statement is true regarding company/employee relations during and after a disaster?

  1. The organization has a responsibility to contnue salaries or other funding to the employees and/or families affected by the disaster.
  2. The organization's responsibility to the employee's families ends when the disaster stops the business from functioning.
  3. Employees should seek any means of obtaining compensation after a disaster, including fraudulent ones.
  4. Senior-level executives are the only employees who should receive continuing salaries during the disruptive event.

Answer: A

Hint: The organization has an inherent responsibility to its employees and their families during and after a disaster or other disruptive event. The company must be insured to the extent it can properly compensate its employees and families. Alternatively, employees do not have the right to obtain compensatory damages fraudulently if the organization cannot compensate.

30. which choice below is the correct definition of a Mutual Aid Agreement ?

  1. A management-level analysis that identifies the impact of losing an entity's resources
  2. An appraisal or determination of the effects of a disaster on human,physical,economic, and natural resources
  3. A prearranged agreement to render assistance to the parties of the agreement
  4. Activities taken to eliminate or reduce the degree of risk to life and property

Answer: C

Hint: A mutual aid agreement is used by two or more parties to povide for assistance if one of the parties experiences an emergency. Answer A describes a business continuity plan. Answer B describes a damage assessment, and answer D describes risk mitigation.

31. Which choice below most accurately sescribes a business continuity program?

  1. Ongoing process to ensure that the necessary steps are taken to identify the impact of potential losses and maintain viable recovery
  2. A program that implements the mission,vision, and strategic goals of the organization
  3. A determination of the effects of a disaster on human, physical, economic, and natural resources
  4. A standard that allows for rapid recovery during system interruption and data loss

Answer: A

Hint: A business continuity program is an ongoing process supported by senior management and funded to ensure that the necessary steps are taken to identify the impact of potential losses,maintain viable recovery strategies and recovery plans, and ensure continuity of services through personnel training, plan testing, and maintenance. Answer B describes a disaster/emergency management orogram. Answer C describes a damage assessment. Answer D is a distracter.

32. Which of the following would best describe a cold backup site?

  1. A computer facility with electrical power and HVAC, all needed applications installed and configuared on the file/print servers, and enough workstations present to begin processing
  2. A computer facility with no electrical power or HVAC
  3. A computer facility with electrical power and HVAC but with no workstations or servers on-site prior to the event and no applications installed
  4. A computer facility available with electrical power and HVAC and some file/print seevers, although the applications are not installed or configured and all of the needed workstations may not be site or ready to begin processing

Answer: B

Hint: A computer facility with electrical power and HVAC, with workstations and servers available to be brought on-site when the event begins and no applications installed, is a cold site. Answer A is a hot site, and D is a warm site. Answer C is just an empty room.