• Home
  • Articles
  • Free CBCP-002 Exam Files Downloaded Instantly 100% Dumps & Practice Exam [Q15-Q36]

Free CBCP-002 Exam Files Downloaded Instantly 100% Dumps & Practice Exam [Q15-Q36]

Share

Free CBCP-002 Exam Files Downloaded Instantly 100% Dumps & Practice Exam

Free Exam Updates CBCP-002 dumps with test Engine Practice

NEW QUESTION # 15
Which risk group is associated with risk of physical assets failing/being damaged or enhanced?

  • A. Strategic
  • B. Operational
  • C. Financial
  • D. Technical

Answer: D

Explanation:
Explanation
Technical risk is the type of risk that is associated with risk of physical assets failing/being damaged or enhanced. Technical risk is the uncertainty or variability of the performance or reliability of physical assets, such as equipment, systems, infrastructure, or data. Technical risk can result from factors such as design flaws, manufacturing defects, maintenance issues, obsolescence, human error, natural disasters, or cyberattacks.
Technical risk can affect an organization's operational efficiency, quality, safety, security, or profitability.
Verified References:
https://www.investopedia.com/terms/t/technical-risk.asphttps://www.thebci.org/training-qualifications/good-prac


NEW QUESTION # 16
Which of the following exercises involve all teams?

  • A. Full-scale exercise
  • B. Plan walkthrough
  • C. Facilitated discussion
  • D. Multi-team simulation

Answer: A

Explanation:
Explanation
A full-scale exercise is a type of exercise that involves all teams. A full-scale exercise is a high-pressure exercise that simulates a realistic scenario of a disruption that affects all or most of the organization's functions and processes. A full-scale exercise tests the effectiveness and efficiency of the plans, procedures, systems, teams, and resources that are required to respond to and recover from a disruption. A full-scale exercise also evaluates the coordination and communication among all the teams and stakeholders involved.
Verified References:
https://www.ready.gov/business-continuity-planhttps://www.csoonline.com/article/515730/business-continuity-a


NEW QUESTION # 17
Which phase of the project is the time to maximize on the employees' new awareness and management support?

  • A. Timelines
  • B. Structure
  • C. Benchmark
  • D. Milestones

Answer: D

Explanation:
Explanation
Milestones are important events in a project that mark the completion of a major deliverable or the achievement of a key goal. They are a good time to check in with employees and management to see how they are feeling about the project, and to get their feedback on how things are going. This is also a good time to reinforce the importance of the project and to get everyone re-committed to its success.
The other three options are not as good times to maximize on the employees' new awareness and management support. Timelines are important, but they are not as important as milestones in terms of getting people's attention. Benchmarks are useful for tracking progress, but they are not as good for getting people's buy-in.
Structure is important for organizing a project, but it is not as important as milestones for motivating people.
So, the answer to the question is that the milestones phase of the project is the time to maximize on the employees' new awareness and management support.
Here are some specific things that you can do at the milestones phase to maximize on employee awareness and management support:
Hold a team meeting to celebrate the milestone and to discuss the next steps.
Send out a communication to all employees and managers, highlighting the milestone and thanking everyone for their hard work.
Meet with management to discuss the project's progress and to get their feedback.
Use the milestone as an opportunity to reinforce the importance of the project and to get everyone re-committed to its success.


NEW QUESTION # 18
Individual accountability for the management of the risk should be clearly established.

  • A. False
  • B. True

Answer: B

Explanation:
Explanation
Individual accountability for the management of the risk should be clearly established. This is true because accountability is one of the key principles of business continuity management. Accountability means that each person involved in the business continuity management program has a clear understanding of their roles and responsibilities, as well as the authorityand resources to perform them. Accountability also means that each person is held responsible for their actions and outcomes, and that they report on their performance and progress regularly. Verified References:
https://www.iso.org/publication/PUB100442.htmlhttps://phoenixnap.com/blog/what-is-business-continuity-mana


NEW QUESTION # 19
Which type of risk is related to human error or achievement?

  • A. Strategic
  • B. Operational
  • C. Technical
  • D. Commercial

Answer: B

Explanation:
Explanation
Operational risk is the type of risk that is related to human error or achievement. Operational risk is the uncertainty or variability of the execution or outcome of an organization's functions or processes. Operational risk can result from factors such as inadequate policies, procedures, systems, controls, skills, training, supervision, or compliance. Operational risk can affect an organization's operational efficiency, quality, safety, security, reputation, or profitability. Verified References:
https://www.investopedia.com/terms/o/operational_risk.asphttps://www.thebci.org/training-qualifications/good-p


NEW QUESTION # 20
Tolerating risk is where no action is taken to mitigate or reduce a risk.

  • A. False
  • B. True

Answer: B

Explanation:
Explanation
Tolerating risk is where no action is taken to mitigate or reduce a risk. This is true because tolerating risk is one of the possible strategies for managing risk. Tolerating risk means accepting or retaining a risk without taking any further action to reduce it, either because the risk level is acceptable or because the cost or effort of reducing it is not justified. Tolerating risk may be appropriate for low-priority or low-impact risks that do not pose a significant threat to the organization's objectives. Verified References:
https://www.investopedia.com/terms/t/the-four-ts.asphttps://www.thebci.org/training-qualifications/good-practic


NEW QUESTION # 21
A disaster can also be declared for an illness pandemic where a significant portion of employees are sick.

  • A. False
  • B. True

Answer: B

Explanation:
Explanation
A disaster can also be declared for an illness pandemic where a significant portion of employees are sick. This is true because an illness pandemic is a type of natural disaster that can affect an organization's ability to continue its normal operations. An illness pandemic can cause absenteeism, reduced productivity, increased costs, supply chain disruptions, customer dissatisfaction, or regulatory compliance issues. Therefore, an organization may need to declare a disaster and activate its business continuity and disaster recovery plan if an illness pandemic impacts its critical functions and processes beyond an acceptable level. Verified References:
https://www.ready.gov/business-continuity-planhttps://www.csoonline.com/article/515730/business-continuity-a


NEW QUESTION # 22
BIA helps you identify

  • A. Critical services and products
  • B. Critical interdependencies and interested parties
  • C. Tangible and intangible impact of a disruption over period of time
  • D. All of the above

Answer: D

Explanation:
Explanation
BIA helps to identify all of the above aspects of an organization's functions and processes. It helps to identify the critical services and products that the organization delivers to its customers and stakeholders, and the functions and processes that support them. It also helps to identify the critical interdependencies and interested parties that are involved in or affected by the organization's functions and processes, such as suppliers, partners, regulators, or employees. Moreover, it helps to identify the tangible and intangible impacts of a disruption tothe organization's functions and processes over a period of time, such as financial losses, reputational damage, legal liabilities, or customer dissatisfaction. Verified References:
https://www.ready.gov/business-impact-analysishttps://drii.org/resources/professionalpractices/EN


NEW QUESTION # 23
Which of the following four are action approach crisis and post-crisis management? (Choose four R's)

  • A. Rss Feed
  • B. Response
  • C. Recovery
  • D. Rustic
  • E. Reduction
  • F. Readiness

Answer: B,C,E,F

Explanation:
Explanation
The four R's are action approaches for crisis and post-crisis management. They are:
Reduction: This approach aims to prevent or mitigate the occurrence or impact of a crisis by identifying and addressing the root causes, vulnerabilities, and risks.
Readiness: This approach aims to prepare for a potential crisis by developing plans, policies, procedures, systems, teams, and resources that can enable a timely and effective response.
Response: This approach aims to manage a crisis by activating the plans, policies, procedures, systems, teams, and resources that can contain, control, and resolve the situation.
Recovery: This approach aims to restore normal operations after a crisis by implementing actions that can repair damages, restore functions and processes, resume services and products, recover losses, and learn lessons. Verified References:
https://www.cisco.com/c/en/us/solutions/hybrid-work/what-is-business-continuity.html
https://phoenixnap.com/blog/what-is-business-continuity-management


NEW QUESTION # 24
BIA stands for

  • A. Business Impact Analysis
  • B. Business Improvement Activities
  • C. Business Information Availability
  • D. Business Importance and Availability

Answer: A

Explanation:
Explanation
Business impact analysis (BIA) is the process of identifying and prioritizing the organization's functions and processes based on their importance to the organization's objectives, and assessing the potential impacts of a disruption to those functions and processes over time. The BIA helps to determine the recovery time objectives (RTOs), recovery point objectives (RPOs), and resource requirements for each function and process, as well as the interdependencies and dependencies among them. The BIA provides the basis for developing recovery strategies and plans. Verified References:
https://www.ready.gov/business-impact-analysishttps://drii.org/resources/professionalpractices/EN


NEW QUESTION # 25
Which of the following is a low-pressure exercise that uses presentation techniques including videos, slides, and handouts, so that participants fully understand their plans?

  • A. Virtualization
  • B. Single team simulation
  • C. Plan walkthrough
  • D. Facilitated discussion

Answer: C

Explanation:
Explanation
A plan walkthrough is a low-pressure exercise that uses presentation techniques including videos, slides and handouts, so that participants fully understand their plans1.


NEW QUESTION # 26
Risks are diverse and arise from both external and internal sources.

  • A. False
  • B. True

Answer: B

Explanation:
Explanation
Risks are diverse and arise from both external and internal sources. This is true because risks are uncertainties that can have positive or negative effects on an organization's objectives. Risks can arise from various sources that are either outside or inside the organization's control. External sources of risk include natural disasters, cyberattacks, market fluctuations, customer preferences, competition, regulation, or political instability.
Internal sources of risk include human error, fraud, system failure, process inefficiency, organizational culture, or strategic decisions. Verified References:
https://www.investopedia.com/terms/b/businessrisk.asphttps://www.thebci.org/training-qualifications/good-pract


NEW QUESTION # 27
Damage assessment includes all but which of the following steps?

  • A. Estimate the time it will take to restore critical business functions.
  • B. Identifying the affected business functions.
  • C. Having the insurance company declare the total extent of the damages.
  • D. Evaluating the time to restore operations and if greater than the MTD, a disaster should be declared and BCP enacted

Answer: C

Explanation:
Explanation
Damage assessment is the process of evaluating the extent and severity of the damage caused by a disruption to an organization's facilities, equipment, systems, data, records, or personnel. It includes identifying the affected business functions and processes, estimating the time it will take to restore them to normal or acceptable levels of operation, and evaluating whether the recovery time exceeds the maximum tolerable downtime (MTD) for each function or process. If so, a disaster should be declared and the business continuity plan should be activated. Having the insurance company declare the total extent of the damages is not part of the damage assessment process, as it may take longer than the MTD and may not reflect the operational impact of the damage. Verified References:
https://www.fema.gov/pdf/emergency/nims/Damage_Assessment.pdfhttps://drii.org/resources/professionalpracti


NEW QUESTION # 28
Which control mechanism is the process by which an organization reduces the likelihood of a risk event occurring or mitigates the effects should it occur?

  • A. Risk control
  • B. Risk variation
  • C. Risk collision
  • D. Risk avoidance

Answer: A

Explanation:
Explanation
Risk control is the control mechanism that is the process by which an organization reduces the likelihood of a risk event occurring or mitigates the effects should it occur. Risk control is the process of implementing measures or actions to modify or influence the risk level of an organization. Risk control can involve various strategies, such as avoidance, reduction, transfer, sharing, retention, or acceptance. Risk control can help to improve the organization's resilience and performance. Verified References:
https://www.investopedia.com/terms/r/risk-control.asphttps://www.thebci.org/training-qualifications/good-practi


NEW QUESTION # 29
Which statement is authorized at an appropriate level and should codify the company's attitude to a particular risk?

  • A. Policy Statement
  • B. QMS Document
  • C. Process Document
  • D. Privacy Statement

Answer: A

Explanation:
Explanation
A policy statement is a statement that is authorized at an appropriate level and should codify the company's attitude to a particular risk. A policy statement is a document that defines the scope, objectives, principles, roles, and responsibilities of a business continuity management program. It should also express the organization's commitment to managing risks and ensuring continuity of its critical functions and processes. A policy statement should be approved by senior management and communicated to all relevant stakeholders.
Verified References:
https://www.iso.org/publication/PUB100442.htmlhttps://phoenixnap.com/blog/what-is-business-continuity-mana


NEW QUESTION # 30
Which of the following are three components of business continuity plan? (Choose three)

  • A. Incident management
  • B. Disaster recovery
  • C. Emergency response
  • D. Problem management
  • E. Business recovery

Answer: A,B,C

Explanation:
Explanation
The three components of a business continuity plan are emergency response, incident management, and disaster recovery. They are:
Emergency response: This component involves the immediate actions taken to protect the life, health, and safety of people and the environment in the event of a disruption. Emergency response may include activating alarms, evacuating premises, contacting emergency services, or providing first aid.
Incident management: This component involves the coordination and communication of the activities and resources required to manage and resolve a disruption. Incident management may include activating the business continuity team, declaring a disaster, assessing the impact, activating the recovery strategies, or communicating with stakeholders.
Disaster recovery: This component involves the restoration and recovery of the IT systems, data, and infrastructure that support the critical functions and processes of the organization. Disaster recovery may include activating the backup systems, restoring the data, repairing or replacing the equipment, or testing the functionality. Verified References: https://www.ready.gov/business-continuity-plan
https://www.csoonline.com/article/515730/business-continuity-and-disaster-recovery-planning-the-basics.


NEW QUESTION # 31
......

Provide Valid Dumps To Help You Prepare For Certified Business Continuity Professional (CBCP) Exam: https://www.exam4tests.com/CBCP-002-valid-braindumps.html

Updated Verified CBCP-002 dumps Q&As - 100% Pass Guaranteed: https://drive.google.com/open?id=1kHqi2Bn1gyc0-a6RoyQVYERJm28TnrnH

Related Articles

more
GAQM CBCP-002 Certification Practice Exam

Copyright © 2026 Exam4Tests NETWORK CO.,LIMITED. All Rights Reserved. All trademarks used are properties of their respective owners. Privacy Policy