CERTIFIED BUSINESS CONTINUITY PROFESSIONAL (CBCP)
EXAM PRACTICE QUESTIONS AND ANSWERS: THE MOST
RECENT AND COMPREHENSIVE VERSION WITH VERIFIED
ANSWERS; GUARANTEED PASS WITH INSTANT PDF
DOWNLOAD.
Exam Overview:
This examination assesses competencies aligned with the professional practices of the Disaster Recovery
Institute International (DRI), the governing body for the Certified Business Continuity Professional
(CBCP) credential.
Content Domains Covered:
Business Continuity Management (BCM) Program Initiation and Management
Risk Assessment and Threat Analysis
Business Impact Analysis (BIA)
Business Continuity Strategies
Emergency Management and Incident Response
Plan Development and Documentation
Awareness and Training Programs
Exercising, Testing, and Maintenance
Crisis Communications and Media Relations
Supply Chain and Third-Party Continuity
Information Technology Disaster Recovery
Governance, Ethics, Legal & Regulatory Requirements
Audit, Metrics, and Continuous Improvement
Real-world Scenario-Based Decision Making
1. An organization begins implementing a business continuity program. What
is the MOST critical first step?
A. Conducting a Business Impact Analysis
B. Developing recovery strategies
C. Obtaining executive management sponsorship
D. Drafting emergency response procedures
Rationale: Executive sponsorship ensures authority, funding, and alignment with
strategic objectives. Without leadership commitment, program success is unlikely.
, 2. The primary objective of a Business Impact Analysis (BIA) is to:
A. Identify all possible threats
B. Determine the impact of disruptions and establish recovery priorities
C. Develop crisis communication templates
D. Evaluate insurance coverage
Rationale: A BIA identifies critical functions, impacts of interruption, and recovery
time objectives.
3. Recovery Time Objective (RTO) is BEST defined as:
A. Maximum tolerable downtime
B. Target time to restore a system after disruption
C. The time within which a business function must be resumed
D. Data recovery interval
Rationale: RTO represents the targeted restoration timeframe following an
interruption.
4. During a risk assessment, qualitative analysis primarily relies on:
A. Statistical modeling
B. Monte Carlo simulations
C. Financial audits
D. Subjective judgment and expert opinion
,Rationale: Qualitative risk assessment uses descriptive scales and professional
judgment.
5. Which metric defines the acceptable data loss measured in time?
A. RTO
B. MTD
C. Recovery Point Objective (RPO)
D. SLA
Rationale: RPO determines maximum tolerable data loss in time.
6. A pandemic affecting 40% of staff availability is classified as what type of
threat?
A. Technological
B. Environmental
C. Human capital disruption
D. Infrastructure
Rationale: A pandemic primarily impacts personnel resources.
7. Which document formally defines the BCM program scope and governance
structure?
A. Incident Action Plan
B. Recovery Strategy Plan
, C. Business Continuity Policy
D. Crisis Communication Plan
Rationale: The policy outlines governance, objectives, and accountability.
8. Maximum Tolerable Downtime (MTD) represents:
A. Backup retention duration
B. Longest period a process can be unavailable without severe impact
C. Data replication interval
D. IT restoration time
Rationale: MTD defines unacceptable disruption threshold.
9. In risk management, risk is calculated as:
A. Impact ÷ Probability
B. Likelihood × Impact
C. Vulnerability × Control
D. Loss × Insurance
Rationale: Risk commonly equals probability multiplied by consequence.
10.A strategy involving relocating operations to a pre-equipped site is known
as:
A. Cold site
EXAM PRACTICE QUESTIONS AND ANSWERS: THE MOST
RECENT AND COMPREHENSIVE VERSION WITH VERIFIED
ANSWERS; GUARANTEED PASS WITH INSTANT PDF
DOWNLOAD.
Exam Overview:
This examination assesses competencies aligned with the professional practices of the Disaster Recovery
Institute International (DRI), the governing body for the Certified Business Continuity Professional
(CBCP) credential.
Content Domains Covered:
Business Continuity Management (BCM) Program Initiation and Management
Risk Assessment and Threat Analysis
Business Impact Analysis (BIA)
Business Continuity Strategies
Emergency Management and Incident Response
Plan Development and Documentation
Awareness and Training Programs
Exercising, Testing, and Maintenance
Crisis Communications and Media Relations
Supply Chain and Third-Party Continuity
Information Technology Disaster Recovery
Governance, Ethics, Legal & Regulatory Requirements
Audit, Metrics, and Continuous Improvement
Real-world Scenario-Based Decision Making
1. An organization begins implementing a business continuity program. What
is the MOST critical first step?
A. Conducting a Business Impact Analysis
B. Developing recovery strategies
C. Obtaining executive management sponsorship
D. Drafting emergency response procedures
Rationale: Executive sponsorship ensures authority, funding, and alignment with
strategic objectives. Without leadership commitment, program success is unlikely.
, 2. The primary objective of a Business Impact Analysis (BIA) is to:
A. Identify all possible threats
B. Determine the impact of disruptions and establish recovery priorities
C. Develop crisis communication templates
D. Evaluate insurance coverage
Rationale: A BIA identifies critical functions, impacts of interruption, and recovery
time objectives.
3. Recovery Time Objective (RTO) is BEST defined as:
A. Maximum tolerable downtime
B. Target time to restore a system after disruption
C. The time within which a business function must be resumed
D. Data recovery interval
Rationale: RTO represents the targeted restoration timeframe following an
interruption.
4. During a risk assessment, qualitative analysis primarily relies on:
A. Statistical modeling
B. Monte Carlo simulations
C. Financial audits
D. Subjective judgment and expert opinion
,Rationale: Qualitative risk assessment uses descriptive scales and professional
judgment.
5. Which metric defines the acceptable data loss measured in time?
A. RTO
B. MTD
C. Recovery Point Objective (RPO)
D. SLA
Rationale: RPO determines maximum tolerable data loss in time.
6. A pandemic affecting 40% of staff availability is classified as what type of
threat?
A. Technological
B. Environmental
C. Human capital disruption
D. Infrastructure
Rationale: A pandemic primarily impacts personnel resources.
7. Which document formally defines the BCM program scope and governance
structure?
A. Incident Action Plan
B. Recovery Strategy Plan
, C. Business Continuity Policy
D. Crisis Communication Plan
Rationale: The policy outlines governance, objectives, and accountability.
8. Maximum Tolerable Downtime (MTD) represents:
A. Backup retention duration
B. Longest period a process can be unavailable without severe impact
C. Data replication interval
D. IT restoration time
Rationale: MTD defines unacceptable disruption threshold.
9. In risk management, risk is calculated as:
A. Impact ÷ Probability
B. Likelihood × Impact
C. Vulnerability × Control
D. Loss × Insurance
Rationale: Risk commonly equals probability multiplied by consequence.
10.A strategy involving relocating operations to a pre-equipped site is known
as:
A. Cold site
