MISY 5325 Final Exam
Study online at https://quizlet.com/_hymber
1. Mission-critical business functions are those that are True
considered vital to an organization.
2. Criticality is usually documented in the business im- True
pact analysis (BIA) but is repeated in the business
continuity plan (BCP) for the sake of clarity.
3. Regarding business continuity, recovery planning of- False
ten takes the format of a business impact analysis
(BIA).
4. Criticality of operations identifies the order of impor- True
tance of each of the seven domains of the typical IT
infrastructure.
5. A business continuity plan (BCP) is part of a business False
impact analysis (BIA).
6. A best practice when performing a business impact True
analysis (BIA) is to avoid taking shortcuts.
7. In a business continuity plan (BCP), personnel deemed False
mission-critical must be the first to respond to an
emergency.
8. A small organization might not have a formal com- true
puter incident response team (CIRT) and instead have
information technology professionals respond to inci-
dents.
9. An MAO identifies the maximum acceptable down- True
time for an organization.
10. False
, MISY 5325 Final Exam
Study online at https://quizlet.com/_hymber
The business continuity plan (BCP) EMT is important
because the EMT provides medical assistance in the
event of a disaster, such as an earthquake or hurri-
cane, that would cause a disruption.
11. Launching a counterattack on attackers is important False
to protecting an organization's critical business func-
tions (CBFs).
12. A business impact analysis (BIA) is intended to include False
all IT functions.
13. Critical success factors (CSFs) include elements neces- True
sary to perform the mission of an organization.
14. Firewalls are not an effective tool for determining false
whether users are violating policies.
15. Scope creep can occur if the scope of a business con- true
tinuity plan (BCP) is not defined.
16. A disaster recovery plan (DRP) starts by identifying false
critical assets.
17. The business continuity plan (BCP) technical recovery true
team needs to be very familiar with existing disaster
recovery plans (DRPs) and may have even authored
them.
18. Business continuity plan (BCP) training should be con- true
ducted at least annually.
19. true
, MISY 5325 Final Exam
Study online at https://quizlet.com/_hymber
By addressing critical business functions (CBFs), dis-
aster recovery plans (DRPs) help ensure that critical
servers and services continue.
20. Calculating the impact and priority of an incident can true
be used to determine how critical the attack is.
21. The purpose of the computer incident response team false
(CIRT) plan is significantly different from the purpose
of a disaster recovery plan (DRP).
22. The scope of a business impact analysis (BIA) for any false
size organization must include the entire organiza-
tion.
23. Some recovery point objectives (RPOs) require you to true
recover data up to a moment of failure.
24. The two primary terms related to recovery require- true
ments are RTO and RPO.
25. Even though the business impact analysis (BIA) iden- true
tifies priorities, it is common to reaffirm them in a
business continuity plan (BCP).
26. All systems should be included in a business continu- false
ity plan (BCP).
27. Storing backed-up data at an off-site location makes false
it available for restoration in case something compro-
mises the original data.
28. Business continuity plan (BCP) notification procedures true
can vary from one organization to another.
Study online at https://quizlet.com/_hymber
1. Mission-critical business functions are those that are True
considered vital to an organization.
2. Criticality is usually documented in the business im- True
pact analysis (BIA) but is repeated in the business
continuity plan (BCP) for the sake of clarity.
3. Regarding business continuity, recovery planning of- False
ten takes the format of a business impact analysis
(BIA).
4. Criticality of operations identifies the order of impor- True
tance of each of the seven domains of the typical IT
infrastructure.
5. A business continuity plan (BCP) is part of a business False
impact analysis (BIA).
6. A best practice when performing a business impact True
analysis (BIA) is to avoid taking shortcuts.
7. In a business continuity plan (BCP), personnel deemed False
mission-critical must be the first to respond to an
emergency.
8. A small organization might not have a formal com- true
puter incident response team (CIRT) and instead have
information technology professionals respond to inci-
dents.
9. An MAO identifies the maximum acceptable down- True
time for an organization.
10. False
, MISY 5325 Final Exam
Study online at https://quizlet.com/_hymber
The business continuity plan (BCP) EMT is important
because the EMT provides medical assistance in the
event of a disaster, such as an earthquake or hurri-
cane, that would cause a disruption.
11. Launching a counterattack on attackers is important False
to protecting an organization's critical business func-
tions (CBFs).
12. A business impact analysis (BIA) is intended to include False
all IT functions.
13. Critical success factors (CSFs) include elements neces- True
sary to perform the mission of an organization.
14. Firewalls are not an effective tool for determining false
whether users are violating policies.
15. Scope creep can occur if the scope of a business con- true
tinuity plan (BCP) is not defined.
16. A disaster recovery plan (DRP) starts by identifying false
critical assets.
17. The business continuity plan (BCP) technical recovery true
team needs to be very familiar with existing disaster
recovery plans (DRPs) and may have even authored
them.
18. Business continuity plan (BCP) training should be con- true
ducted at least annually.
19. true
, MISY 5325 Final Exam
Study online at https://quizlet.com/_hymber
By addressing critical business functions (CBFs), dis-
aster recovery plans (DRPs) help ensure that critical
servers and services continue.
20. Calculating the impact and priority of an incident can true
be used to determine how critical the attack is.
21. The purpose of the computer incident response team false
(CIRT) plan is significantly different from the purpose
of a disaster recovery plan (DRP).
22. The scope of a business impact analysis (BIA) for any false
size organization must include the entire organiza-
tion.
23. Some recovery point objectives (RPOs) require you to true
recover data up to a moment of failure.
24. The two primary terms related to recovery require- true
ments are RTO and RPO.
25. Even though the business impact analysis (BIA) iden- true
tifies priorities, it is common to reaffirm them in a
business continuity plan (BCP).
26. All systems should be included in a business continu- false
ity plan (BCP).
27. Storing backed-up data at an off-site location makes false
it available for restoration in case something compro-
mises the original data.
28. Business continuity plan (BCP) notification procedures true
can vary from one organization to another.
