Concepts and Terms

Question 1

Products, processes, and/or personnel that are critical to the organization’s operations.

Answer 1

Assets

Question 2

What is the central feature of the risk analysis process?

Answer 2

Identifying assets

Question 3

Assets may be categorized as _____________ and _____________.

Answer 3

Tangible and intangible

Question 4

Examples include: facilities, hardware, software, supplies, documentation, personnel, reputation, and morale

Answer 4

Assets

Question 5

The projected loss (in dollars) that one can expect to lose in a year as result of emergencies

Answer 5

Annual Loss Exposure

Question 6

Plan that includes measures to keep an organization in operation in the face of emergency and may include procedures that involve the temporary or permanent relocation of personnel and/or functions

Answer 6

Business Continuity (BC) and Continuity of Operations (COOP)

Question 7

Integral part of the business continuity planning process (COOP). Used to identify critical functions, to assess the impact of a disaster or other emergency on those functions over time, to determine the other elements of the business on which those critical functions depend, and to help develop and prioritize recovery strategies.

Answer 7

Business Impact Analysis (BIA)

Question 8

The process of developing the capability to offset the effects of business disruption.

Answer 8

Business Recovery Planning

Question 9

The process involves arranging alternatives for critical business functions and planning for business or service survival.

Answer 9

Business Recovery Planning.

Question 10

Four-pronged process developed and applied at the state and local government level and has been applied to business continuity.

Answer 10

Comprehensive Emergency Management (CEM)

Question 11

The four elements of Comprehensive Emergency Management (CEM) are:
1)
2)
3)
4)

Answer 11

1) Mitigation
2) Preparedness
3) Response
4) Recovery

Question 12

The undesirable result of a threat’s action against the asset, which results in measurable loss to the organization.

Answer 12

Consequence/Outcome

Question 13

A wide variety of events that cause significant disruption to the normal activities of an organization as a whole.

Answer 13

Crisis

Question 14

A planned, systematic response that permits an organization to continue making its products or providing its services during an emergency.

Answer 14

Crisis Management

Question 15

Allows the organization to capitalize on the expertise of personnel from various disciplines who plan for and manage the situation.

Answer 15

Crisis Management

Question 16

Location from which the emergency response can be directed.

Answer 16

Emergency Operations Center (EOC)

Question 17

Planning considerations that must be in place for a company to effectively response to and manage an emergency event.

Answer 17

Emergency Preparedness

Question 18

A command and control mechanism used by many public safety agencies.

Answer 18

Incident Command System (ICS)

Question 19

Incident Command Systems (ICS) normally consists of six primary elements:
1)
2)
3)
4)
5)
6)

Answer 19

1) Command
2) Operations
3) Planning
4) Logistics
5) Finance
6) Administration

Question 20

A measure of the probability of a loss-causing event

Answer 20

Likelihood of Occurrence

Question 21

Actions involving lasting, often permanent, reduction of exposure to, probability of, or potential loss from hazard events

Answer 21

Mitigation

Question 22

Actions taken before an event to plan, organize, equip, train, and exercise in order to deal with emergencies that cannot be avoided or entirely mitigated.

Answer 22

Preparedness

Question 23

Involves near-term and long-term actions taken to return the organization to a pre-emergency level of operation or, in some cases, to a new level of operation.

Answer 23

Recovery

Question 24

May include implementation of continuity of operation or business resumption plans, activation of emergency relocation sites, and reconstitution or restoration at the original location or a new permanent location.

Answer 24

Recovery efforts

Question 25

Entails the implementation of the emergency plan to deal with the short-term effects of the event.

Answer 25

Response

Question 26

May include incident identification, emergency notification, activation and deployment of emergency teams, and evacuation of personnel.

Answer 26

Response

Question 27

The potential for causing losses due to the presence of a threat and vulnerability.

Answer 27

Risk

Question 28

Derived from the analysis of the threat and corresponding vulnerabilities along with the probability of their interaction.

Answer 28

Risk

Question 29

A procedure used to estimate potential losses that could result from variuos vulnerabilities and the damage from the action of certain threats

Answer 29

Risk Analysis

Question 30

Identifies both the critical assets that must be protected and the environment in which these assets are located.

Answer 30

Risk Analysis

Question 31

The disclosure of high probability vulnerabilities.

Answer 31

Risk Exposure

Question 32

Physical controls, mechanisms, policies and procedures designed to protect assets from threats

Answer 32

Safeguards

Question 33

A person, thing, event or idea that poses some danger to an asset.

Answer 33

Threat

Question 34

May compromise the confidentiality, integrity, or availability of an asset by exploiting vulnerabilities or weaknesses in safeguards system.

Answer 34

Actions of a threat

Question 35

Weaknesses in the safeguards system, or the absence of safeguards.

Answer 35

Vulnerabilities

Question 36

Can be clearly associated with threats

Answer 36

Vulnerabilties