DRI International BCP Examination
Study online at https://quizlet.com/_4pfe3d
1. Business Continuity: An ongoing process to ensure that the necessary steps are taken to identify the
impact of potential losses and maintain viable recovery strategies, recovery plans, and continuity of services. (NFPA
1600)
2. Disaster Recovery: The technical aspect of business continuity. The collection of resources and activities
to re-establish information technology services (including components such as infrastructure, telecommunications,
systems,
applications and data) at an alternate site following a disruption of IT services. Disaster recovery includes subsequent
resumption and restoration of those operations at a more permanent site. (DRJ)
3. Risk Assessment: The quantification of threats to an organization and the probability of them being
realized. (BCI)
4. Business Impact Analysis: A method of identifying the effects of failing to perform a function or
requirement. (FCD-1)
5. Recovery Time Objective: Time goal for the restoration and recovery of functions or resources based
on the acceptable down time and acceptable level of performance in case of a disruption of operations. (ASIS)
6. Recovery Point Objective: Point to which information used by an activity must be restored to enable
the activity to operate on resumption. ISO Editor's Note: Can also be referred to as "maximum data loss". (ISO 22301)
7. Crisis Management: The overall coordination of an organization's response to a crisis, in an effective,
timely manner, with the goal of avoiding or minimizing damage to the organization's profitability, reputation, and
ability to operate. (DRJ)
8. Incident Management: The process by which an organization responds to and controls an incident
using emergency response procedures or plans. (DRJ)
9. Incident Response: The response of an organization to a disaster or other significant event that may
significantly impact the organization, its people, or its ability to function productively. An incident response may include
evacuation of a facility, initiating a disaster recovery plan, performing damage assessment, and any other measures
necessary to bring an organization to a more stable status.
(DRJ)
10. The Business Continuity Professional's Role: 1. Establish the need for a business continuity
program
2. Obtain support and funding for the business continuity program
3. Build the organizational framework to support the business continuity program
11. Scope: The boundary, or extent, to which a process, procedure, certification, or contract applies - considers
the whole entity.
1/5
, DRI International BCP Examination
Study online at https://quizlet.com/_4pfe3d
12. Objectives: Documents what will be delivered at the end of the project and what benefit that will provide to
the entity.
13. Assumptions: Documents the assumptions you are making regarding the program.
14. The steering committee should ..: Determine/establish objectives, program structure, critical
success factors and be involved in project/program management
15. In which area of the professional practices would you develop teams for the
Business Continuity program?: Program initiation and management
16. Leadership is accountable/liable for?: Understanding their legal responsibilities to the busi-
ness continuity program. The laws, regulations, contractual/employment agreements.
17. How often should you conduct a risk assessment?: Annually or as significant changes
occur.
18. What is the first professional practice for Business Continuity Manage-
ment?: Program Initiation and Management
19. What is the second professional practice for Business Continuity Manage-
ment?: Risk Assessment
20. What is the third professional practice for Business Continuity Manage-
ment?: Business Impact Analysis
21. What is the fourth professional practice for Business Continuity Manage-
ment?: Business Continuity Strategies
22. What is the fifth professional practice for Business Continuity Manage-
ment?: Incident Response
23. What is the sixth professional practice for Business Continuity Manage-
ment?: Plan development and implementation
24. What is the seventh professional practice for Business Continuity Manage-
ment?: Awareness and training programs
25. What is the eighth professional practice for Business Continuity Manage-
ment?: Business continuity plan exercise, assessment, and maintenance
26. What is the ninth professional practice for Business Continuity Manage-
ment?: Crisis communications
27. What is the tenth professional practice for Business Continuity Manage-
ment?: Coordination with external agencies
2/5
Study online at https://quizlet.com/_4pfe3d
1. Business Continuity: An ongoing process to ensure that the necessary steps are taken to identify the
impact of potential losses and maintain viable recovery strategies, recovery plans, and continuity of services. (NFPA
1600)
2. Disaster Recovery: The technical aspect of business continuity. The collection of resources and activities
to re-establish information technology services (including components such as infrastructure, telecommunications,
systems,
applications and data) at an alternate site following a disruption of IT services. Disaster recovery includes subsequent
resumption and restoration of those operations at a more permanent site. (DRJ)
3. Risk Assessment: The quantification of threats to an organization and the probability of them being
realized. (BCI)
4. Business Impact Analysis: A method of identifying the effects of failing to perform a function or
requirement. (FCD-1)
5. Recovery Time Objective: Time goal for the restoration and recovery of functions or resources based
on the acceptable down time and acceptable level of performance in case of a disruption of operations. (ASIS)
6. Recovery Point Objective: Point to which information used by an activity must be restored to enable
the activity to operate on resumption. ISO Editor's Note: Can also be referred to as "maximum data loss". (ISO 22301)
7. Crisis Management: The overall coordination of an organization's response to a crisis, in an effective,
timely manner, with the goal of avoiding or minimizing damage to the organization's profitability, reputation, and
ability to operate. (DRJ)
8. Incident Management: The process by which an organization responds to and controls an incident
using emergency response procedures or plans. (DRJ)
9. Incident Response: The response of an organization to a disaster or other significant event that may
significantly impact the organization, its people, or its ability to function productively. An incident response may include
evacuation of a facility, initiating a disaster recovery plan, performing damage assessment, and any other measures
necessary to bring an organization to a more stable status.
(DRJ)
10. The Business Continuity Professional's Role: 1. Establish the need for a business continuity
program
2. Obtain support and funding for the business continuity program
3. Build the organizational framework to support the business continuity program
11. Scope: The boundary, or extent, to which a process, procedure, certification, or contract applies - considers
the whole entity.
1/5
, DRI International BCP Examination
Study online at https://quizlet.com/_4pfe3d
12. Objectives: Documents what will be delivered at the end of the project and what benefit that will provide to
the entity.
13. Assumptions: Documents the assumptions you are making regarding the program.
14. The steering committee should ..: Determine/establish objectives, program structure, critical
success factors and be involved in project/program management
15. In which area of the professional practices would you develop teams for the
Business Continuity program?: Program initiation and management
16. Leadership is accountable/liable for?: Understanding their legal responsibilities to the busi-
ness continuity program. The laws, regulations, contractual/employment agreements.
17. How often should you conduct a risk assessment?: Annually or as significant changes
occur.
18. What is the first professional practice for Business Continuity Manage-
ment?: Program Initiation and Management
19. What is the second professional practice for Business Continuity Manage-
ment?: Risk Assessment
20. What is the third professional practice for Business Continuity Manage-
ment?: Business Impact Analysis
21. What is the fourth professional practice for Business Continuity Manage-
ment?: Business Continuity Strategies
22. What is the fifth professional practice for Business Continuity Manage-
ment?: Incident Response
23. What is the sixth professional practice for Business Continuity Manage-
ment?: Plan development and implementation
24. What is the seventh professional practice for Business Continuity Manage-
ment?: Awareness and training programs
25. What is the eighth professional practice for Business Continuity Manage-
ment?: Business continuity plan exercise, assessment, and maintenance
26. What is the ninth professional practice for Business Continuity Manage-
ment?: Crisis communications
27. What is the tenth professional practice for Business Continuity Manage-
ment?: Coordination with external agencies
2/5
