PrepAway - Latest Free Exam Questions & Answers

Which of the following plans is designed to protect critical business processes…?

Which of the following plans is designed to protect critical business processes from natural or manmade failures or disasters and the resultant loss of capital due to the unavailability of normal
business processes?

PrepAway - Latest Free Exam Questions & Answers

A.
Business continuity plan

B.
Crisis communication plan

C.
Contingency plan

D.
Disaster recovery plan

Explanation:
The business continuity plan is designed to protect critical business processes from natural or manmade failures or disasters and the resultant loss of capital due to the unavailability of normal
business processes.
Business Continuity Planning (BCP) is the creation and validation of a practiced logistical plan for
how an organization will recover and restore partially or completely interrupted critical (urgent)

functions within a predetermined time after a disaster or extended disruption. The logistical plan is
called a business continuity plan.
Answer option B is incorrect. The crisis communication plan can be broadly defined as the plan for
the exchange of information before, during, or after a crisis event. It is considered as a sub-specialty
of the public relations profession that is designed to protect and defend an individual, company, or
organization facing a public challenge to its reputation.
The aim of crisis communication plan is to assist organizations to achieve continuity of critical
business processes and information flows under crisis, disaster or event driven circumstances.
Answer option C is incorrect. A contingency plan is a plan devised for a specific situation when things
could go wrong. Contingency plans are often devised by governments or businesses who want to be
prepared for anything that could happen. Contingency plans include specific strategies and actions
to deal with specific variances to assumptions resulting in a particular problem, emergency, or state
of affairs. They also include a monitoring process and “triggers” for initiating planned actions. They
are required to help governments, businesses, or individuals to recover from serious incidents in the
minimum time with minimum cost and disruption.
Answer option D is incorrect. A disaster recovery plan should contain data, hardware, and software
that can be critical for a business. It should also include the plan for sudden loss such as hard disc
crash. The business should use backup and data recovery utilities to limit the loss of data.
CISM Review Manual 2010, Contents. “Incident Management and Response”


Leave a Reply