(ISC)2 Certified in Cybersecurity Practice Exam

Disable ads (and more) with a membership for a one time $4.99 payment

Prepare for the (ISC)2 Certified in Cybersecurity Exam with comprehensive quizzes and extensive question banks. Enhance your skills with detailed explanations and practice tests designed to improve your expertise for the certification exam. Get exam-ready now!

Practice this question and more.


Which document specifies how to sustain mission/business processes during a significant disruption?

  1. Disaster Recovery Plan

  2. Business Continuity Plan

  3. Operational Risk Assessment

  4. Business Analysis Report

The correct answer is: Business Continuity Plan

The Business Continuity Plan (BCP) is essential for ensuring that mission and business processes can continue or quickly resume during and after a significant disruption. A BCP outlines strategies and procedures that organizations need to follow to maintain essential functions despite various risks, such as natural disasters, cyberattacks, or other significant interruptions. The plan typically includes the identification of critical processes, the resources required to sustain them, and the necessary steps to take before, during, and after an incident to minimize impact. By focusing on continuity, a BCP not only helps in immediate recovery efforts but also prepares the organization to handle future disruptions more effectively. In contrast, a Disaster Recovery Plan primarily focuses on the restoration of IT systems and data after a disaster, addressing technology and infrastructure rather than overarching business processes. An Operational Risk Assessment evaluates risks that could affect the organization but does not provide the specific guidance for maintaining operations during disruptions. A Business Analysis Report generally deals with performance and strategies rather than continuity planning. Thus, the BCP is the most relevant document for sustaining mission and business processes in the face of significant disruptions.