Chapter 9

Question 1

What is a key consideration for BCP maintenance?

Answer 1

Regular maintenance of the BCP is critical.

Question 2

List some factors that may impact the BCP.

Answer 2

System and software changes, organization/process changes, personnel changes, supplier changes.

Question 3

What are some lessons learned from testing/exercises?

Answer 3

Issues identified during plan implementation.

Question 4

What should be considered during plan review and risk assessment?

Answer 4

Changes to the external environment.

Question 5

According to the course notes, what is the largest predictor of BCP success or failure?

Answer 5

Commitment of senior management.

Question 6

What term is used to describe a more comprehensive approach to dealing with threats beyond an Emergency Action Plan?

Answer 6

Business Continuity

Question 7

What are the major components of Business Continuity Planning?

De….., te…… and ma……

Answer 7

Development, testing, and maintenance

Question 8

What is a key factor in ensuring the continuation of business operations during and after an incident?

Answer 8

Proper team structure and crisis management

Question 9

Why is it important to assign accountability in the readiness phase of a Business Continuity Plan?

Answer 9

To ensure that tasks are properly assigned and carried out

Question 10

What are the five major areas in developing a Business Continuity Plan according to ASIS International?

Answer 10

Readiness, Implementation, Validation, Maintenance, Ethics

Question 11

What is the recommended frequency for maintaining and updating Business Continuity Plans?

Answer 11

Annually or when changes occur

Question 12

What type of events play a significant role in planning for potential disasters?

Answer 12

Weather and nature-related events

Question 13

In what situations can sheltering in place be invoked according to the text?

Answer 13

Weather events (e.g., snow, flooding) and man-made threats

Question 14

What is the purpose of a Rapid Entry Key Vault in a building?

Answer 14

To provide emergency responders access to essential keys or badges

Question 15

Who is responsible for building the Crisis Management Team for a Business Continuity Plan?

Answer 15

Senior organizational leadership

Question 16

What is the preliminary assessment in the Recovery phase?

Answer 16

Damage and impact assessment.

Question 17

What is included in the assessment of damage in the Recovery phase?

Answer 17

Physical damage and non-physical damage like cyber-attacks.

Question 18

What is the prioritized list in the Recovery phase for business resumption?

Answer 18

Needs to include critical and remaining processes as per BIA.

Question 19

What signifies the end of a crisis during the Recovery phase?

Answer 19

Return to normal operations.

Question 20

What is included in Phase II of the BCP development process?

Answer 20

Educating, training, and testing the BCP.

Question 21

What should be part of education and training for personnel?

Answer 21

Key components of the BCP and response plans.

Question 22

Why is testing the plan important?

Answer 22

To ensure requirements are met, find weaknesses, and improve response.

Question 23

What is the purpose of incorporating lessons from previous tests into the BCP?

Answer 23

To enhance future tests and improve the plan’s effectiveness.

Question 24

What roles can participants take during testing?

Answer 24

Facilitator, controller, simulator, observer, or participants.

Question 25

What should be done post-completion of a test or exercise?

Answer 25

Evaluate, assess based on goals, and modify BCP if needed.

Question 26

When should the BCP be reviewed according to the notes?

Answer 26

Whenever any trigger like risk assessment or incident occurs.

Question 27

What triggers the review of a BCP according to the notes?

Answer 27

Risk assessment, industry trends, regulatory requirements, and event exercises.

Question 28

What is the purpose of a Risk Assessment?

Answer 28

To identify and analyze essential personnel, business operations, and potential risks.

Question 29

What is included in a Business Impact Analysis (BIA)?

Answer 29

Identification of critical processes, impact assessment (human cost, financial cost, corporate image), recovery objectives.

Question 30

What are the criteria for strategic plans in Business Continuity Management?

Answer 30

Attainable, high probability of success, verifiable, cost-effective, appropriate for organization’s size and type.

Question 31

What are key aspects of a Crisis Management Team (CMT) formation?

Answer 31

Clear management structure, decision-making authority, responsibility for implementation, chosen team members based on skills and commitment.

Question 32

What does the Prevention phase of Crisis Management involve?

Answer 32

Compliance with corporate policies, accountability, mitigation strategies, resource allocation, monitoring, and support services.

Question 33

What steps are involved in the Response phase of Crisis Management?

Answer 33

Determine and declare crisis existence, notify the team, assess the situation, declare crisis by senior leader, execute the plan promptly.

Question 34

How important is effective communication in crisis management?

Answer 34

Effective communication is crucial for conveying information timely, honestly, and coming from the organization first.

Question 35

What is the importance of resource management in crisis response?

Answer 35

Resource management ensures secondary personnel assignments, accounting for all individuals, and arrangements in emergencies.