• Home
  • Blogs
  • [Jun 02, 2024] Pass CBCP-002 Review Guide, Reliable CBCP-002 Test Engine [Q15-Q30]

[Jun 02, 2024] Pass CBCP-002 Review Guide, Reliable CBCP-002 Test Engine [Q15-Q30]

Share

[Jun 02, 2024] Pass CBCP-002 Review Guide, Reliable CBCP-002 Test Engine

CBCP-002 Test Engine Practice Test Questions, Exam Dumps


To earn the CBCP certification, candidates must successfully pass the exam, which consists of 150 multiple-choice questions. CBCP-002 exam is divided into six sections, with each section covering a specific topic related to business continuity planning. Candidates are given three hours to complete the exam, and a passing score of 70% or higher is required to earn the certification.

 

NEW QUESTION # 15
Which certification centre provides the physical infrastructure?

  • A. Facility
  • B. Service

Answer: A

Explanation:
Explanation
A facility certification center is a center that provides the physical infrastructure for testing and certifying the functionality and performance of products, systems, or services. A facility certification center may have specialized equipment, tools, environments, or standards that can simulate real-world conditions or scenarios.
A facility certification center may also have qualified staff, experts, or auditors who can conduct the testing and certification process. Verified References:
https://www.iso.org/publication/PUB100442.htmlhttps://www.cisco.com/c/en/us/solutions/hybrid-work/what-is-


NEW QUESTION # 16
BIA helps you identify

  • A. All of the above
  • B. Tangible and intangible impact of a disruption over period of time
  • C. Critical interdependencies and interested parties
  • D. Critical services and products

Answer: A

Explanation:
Explanation
BIA helps to identify all of the above aspects of an organization's functions and processes. It helps to identify the critical services and products that the organization delivers to its customers and stakeholders, and the functions and processes that support them. It also helps to identify the critical interdependencies and interested parties that are involved in or affected by the organization's functions and processes, such as suppliers, partners, regulators, or employees. Moreover, it helps to identify the tangible and intangible impacts of a disruption tothe organization's functions and processes over a period of time, such as financial losses, reputational damage, legal liabilities, or customer dissatisfaction. Verified References:
https://www.ready.gov/business-impact-analysishttps://drii.org/resources/professionalpractices/EN


NEW QUESTION # 17
Which register maintains information on all the identified risks relating to an organization?

  • A. Risk register
  • B. Memory Data Register
  • C. Index register
  • D. Crisis register

Answer: A

Explanation:
Explanation
A risk register is a register that maintains information on all the identified risks relating to an organization. A risk register is a document or a tool that records and tracks the details of each risk, such as its description, source, impact, likelihood, rating, owner, status, response strategy, action plan, and monitoring method. A risk register is a useful tool for managing risks and communicating them to stakeholders. Verified References:
https://www.investopedia.com/terms/r/risk-register.asphttps://www.thebci.org/training-qualifications/good-pract


NEW QUESTION # 18
Which Process can be both time consuming and expensive as a result, management will expect tangible benefits to be achieved by the process?

  • A. Business Continuity Planning
  • B. Business Contingency Planning
  • C. Business Ethical Planning
  • D. Business Process Planning

Answer: A

Explanation:
Explanation
Business continuity planning is the process of identifying, developing, and implementing strategies and plans to ensure the continuity of an organization's critical functions and processes in the event of a disruption. It can be both time consuming and expensive, as it requires a thorough analysis of risks, impacts, resources, and recovery options. However, management will expect tangible benefits from the process, such as reduced losses, increased resilience, improved reputation, and compliance with regulations. Verified References:
https://www.ready.gov/business-continuity-plan https://drii.org/resources/professionalpractices/EN


NEW QUESTION # 19
Which type of risk is related to human error or achievement?

  • A. Commercial
  • B. Operational
  • C. Technical
  • D. Strategic

Answer: B

Explanation:
Explanation
Operational risk is the type of risk that is related to human error or achievement. Operational risk is the uncertainty or variability of the execution or outcome of an organization's functions or processes. Operational risk can result from factors such as inadequate policies, procedures, systems, controls, skills, training, supervision, or compliance. Operational risk can affect an organization's operational efficiency, quality, safety, security, reputation, or profitability. Verified References:
https://www.investopedia.com/terms/o/operational_risk.asphttps://www.thebci.org/training-qualifications/good-p


NEW QUESTION # 20
A disaster lasting longer than seventy-two (72) hours requires implementation of which of the following:

  • A. Short Term Business Continuity Plan
  • B. Business Continuity and Disaster Recovery Plan

Answer: B

Explanation:
Explanation
A disaster lasting longer than seventy-two (72) hours requires implementation of a business continuity and disaster recovery plan. A business continuity and disaster recovery plan is a comprehensive document that outlines how an organization will respond to and recover from a disaster that disrupts its normal operations. It covers both the IT aspects (disaster recovery) and the business aspects (business continuity) of restoring the critical functions and processes within an acceptable time frame. A disaster lasting longer than seventy-two (72) hours is likely to have significant impacts on the organization's performance, reputation, assets, and stakeholders, and therefore requires a coordinated and structured approach to ensure its survival and resilience.
Verified References:
https://www.ready.gov/business-continuity-planhttps://www.csoonline.com/article/515730/business-continuity-a


NEW QUESTION # 21
Which of the following are the four T's of risk guidance produced by by the Office of Government Commerce? (choose four)

  • A. Treat
  • B. Technique
  • C. Transfer
  • D. Terminate
  • E. Tolerate
  • F. Title

Answer: A,C,D,E

Explanation:
Explanation
The four T's of risk guidance produced by the Office of Government Commerce are transfer, tolerate, treat, and terminate. They are:
Transfer: This strategy involves transferring or sharing some or all of the responsibility or impact of a risk to another party, such as an insurer, a supplier, or a partner.
Tolerate: This strategy involves accepting or retaining a risk without taking any further action to reduce it, either because the risk level is acceptable or because the cost or effort of reducing it is not justified.
Treat: This strategy involves taking steps to reduce the likelihood or impact of a risk to an acceptable level, such as implementing controls, mitigations, or contingency plans.
Terminate: This strategy involves eliminating or avoiding a risk by discontinuing or changing the activity that causes it. Verified References: https://www.investopedia.com/terms/t/the-four-ts.asp
https://www.thebci.org/training-qualifications/good-practice-guidelines.html


NEW QUESTION # 22
Which of the following can threats be considered? (Choose three)

  • A. Water
  • B. Fire
  • C. Technology failure
  • D. Supply chain failure
  • E. Operational failure

Answer: A,B,C

Explanation:
Explanation
Threats can be considered any events or situations that can cause harm or disruption to an organization's functions or processes. Threats can be natural, human-made, or technological in origin. Some examples of threats are water (such as floods, leaks, or spills), technology failure (such as system crashes, cyberattacks, or power outages), and fire (such as arson, accidents, or explosions). Verified References:
https://www.iso.org/publication/PUB100442.htmlhttps://phoenixnap.com/blog/what-is-business-continuity-mana


NEW QUESTION # 23
Risk ownership must be clearly set out, documented and agreed with the individual owners at all levels of the operational risk management process.

  • A. False
  • B. True

Answer: B

Explanation:
Explanation
Risk ownership must be clearly set out, documented and agreed with the individual owners at all levels of the operational risk management process. This is true because risk ownership is oneof the key principles of business continuity management. Risk ownership means that each risk has a designated person who is responsible and accountable for its identification, assessment, treatment, monitoring, and reporting. Risk owners should have the authority and resources to manage their risks effectively and efficiently. Verified References:
https://www.iso.org/publication/PUB100442.htmlhttps://www.thebci.org/training-qualifications/good-practice-g


NEW QUESTION # 24
Risks are diverse and arise from both external and internal sources.

  • A. False
  • B. True

Answer: B

Explanation:
Explanation
Risks are diverse and arise from both external and internal sources. This is true because risks are uncertainties that can have positive or negative effects on an organization's objectives. Risks can arise from various sources that are either outside or inside the organization's control. External sources of risk include natural disasters, cyberattacks, market fluctuations, customer preferences, competition, regulation, or political instability.
Internal sources of risk include human error, fraud, system failure, process inefficiency, organizational culture, or strategic decisions. Verified References:
https://www.investopedia.com/terms/b/businessrisk.asphttps://www.thebci.org/training-qualifications/good-pract


NEW QUESTION # 25
A formal "disaster" can only be declared by the firm owners or by the IT Department Manager.

  • A. True
  • B. False

Answer: B

Explanation:
Explanation
A formal "disaster" can only be declared by the firm owners or by the IT Department Manager. This is false because a formal "disaster" can be declared by any authorized person who has the responsibility and authority to activate the business continuity and disaster recovery plan. The authorized person may vary depending on the type, scope, and severity of the disaster, but it should be clearly defined in the plan who can declare a disaster and under what circumstances. The authorized person should also communicate the declaration of a disaster to all relevant stakeholders, such as employees, customers, suppliers, partners, regulators, media, or the public. Verified References:
https://www.ready.gov/business-continuity-planhttps://www.csoonline.com/article/515730/business-continuity-a


NEW QUESTION # 26
What is the frequency of BCP testing for critical processes?

  • A. Annually
  • B. Quarterly
  • C. Half-yearly
  • D. As per calendar planned at beginning of the year

Answer: C

Explanation:
Explanation
BCP testing is the process of verifying the effectiveness of a business continuity plan and ensuring that it meets the business objectives and requirements. BCP testing should be conducted regularly to identify any gaps or weaknesses in the plan and to update it accordingly1. While the number of tests to be conducted depends on the industry background, size and complexity, available resources, and BCP maturity levels, it is recommended that the tests are conducted twice a year for critical processes but at least minimum once a year1.


NEW QUESTION # 27
Which risk group is associated with risk of physical assets failing/being damaged or enhanced?

  • A. Financial
  • B. Strategic
  • C. Technical
  • D. Operational

Answer: C

Explanation:
Explanation
Technical risk is the type of risk that is associated with risk of physical assets failing/being damaged or enhanced. Technical risk is the uncertainty or variability of the performance or reliability of physical assets, such as equipment, systems, infrastructure, or data. Technical risk can result from factors such as design flaws, manufacturing defects, maintenance issues, obsolescence, human error, natural disasters, or cyberattacks.
Technical risk can affect an organization's operational efficiency, quality, safety, security, or profitability.
Verified References:
https://www.investopedia.com/terms/t/technical-risk.asphttps://www.thebci.org/training-qualifications/good-prac


NEW QUESTION # 28
Which phase of the project is the time to maximize on the employees' new awareness and management support?

  • A. Benchmark
  • B. Timelines
  • C. Milestones
  • D. Structure

Answer: C

Explanation:
Explanation
Milestones are important events in a project that mark the completion of a major deliverable or the achievement of a key goal. They are a good time to check in with employees and management to see how they are feeling about the project, and to get their feedback on how things are going. This is also a good time to reinforce the importance of the project and to get everyone re-committed to its success.
The other three options are not as good times to maximize on the employees' new awareness and management support. Timelines are important, but they are not as important as milestones in terms of getting people's attention. Benchmarks are useful for tracking progress, but they are not as good for getting people's buy-in.
Structure is important for organizing a project, but it is not as important as milestones for motivating people.
So, the answer to the question is that the milestones phase of the project is the time to maximize on the employees' new awareness and management support.
Here are some specific things that you can do at the milestones phase to maximize on employee awareness and management support:
Hold a team meeting to celebrate the milestone and to discuss the next steps.
Send out a communication to all employees and managers, highlighting the milestone and thanking everyone for their hard work.
Meet with management to discuss the project's progress and to get their feedback.
Use the milestone as an opportunity to reinforce the importance of the project and to get everyone re-committed to its success.


NEW QUESTION # 29
In the event of a disaster, notification shall be given to each employee by either the HR Department Manager or through the firm's emergency notice system.

  • A. False
  • B. True

Answer: B

Explanation:
Explanation
In the event of a disaster, notification shall be given to each employee by either the HR Department Manager or through the firm's emergency notice system. This is true because communication is a vital component of any disaster recovery and business continuity plan. Employees need to be informed of the situation, their roles and responsibilities, and the actions they need to take to ensure their safety and the continuity of the business.
The HR Department Manager or the emergency notice system are the designated channels for communicating with employees during a disaster. Verified References:
https://www.ready.gov/business-continuity-planhttps://www.csoonline.com/article/515730/business-continuity-a


NEW QUESTION # 30
......


The CBCP-002 exam is divided into several sections, each of which covers a different aspect of business continuity management. These sections include risk assessment, business impact analysis, plan development and implementation, and testing and maintenance of business continuity plans.

 

100% Free CBCP-002 Daily Practice Exam With 42 Questions: https://actualtests.prep4away.com/GAQM-certification/braindumps.CBCP-002.ete.file.html

Related Blogs

more
GAQM CBCP-002 Certification Practice Exam