Scheduled tests of application contingency plans should be based on the
A.
Size and complexity of the application.
B.
Number of changes to the application.
C.
Criticality of the application.
D.
Reliability of the application.
Explanation:
Time sensitivity and mission criticality in conjunction with budgetary limitations, level of threat and
degree of risk will be major factors in the development of recommended strategies Reference:
http://csrc.nist.gov/groups/SMA/fasp/documents/contingency_planning/contingencyplantemplate.
doc Note: All though not directly answering the question a little inference lead to this “Priorities – It
is extremely important to know what is critical versus nice to have… It is necessary to know which
department must come online first, which second, and so on…It maybe more necessary to ensure
that the database is up and running before working to bring the file server online.” – Shon Harris Allin-one CISSP Certification Guide pg 604