(ISC)2 Certified in Cybersecurity Practice Exam

Which incident response component focuses on preparing for potential disasters?

• A. Incident Management
• B. Risk Assessment
• C. Disaster Recovery Planning
• D. Monitoring Systems

The correct answer is: Disaster Recovery Planning

The focus on preparing for potential disasters is best captured by Disaster Recovery Planning. This component involves establishing strategies and procedures to ensure the continuity of operations in the event of a disruptive incident, such as a natural disaster, cyberattack, or other emergencies. It encompasses the development of recovery plans, setting up backup systems, and defining how to restore critical functions and data to minimize downtime. The objective of disaster recovery planning is to have a roadmap in place that can be executed when disruptions occur, ensuring that an organization can recover and continue its operations effectively. While other components play important roles in incident response, they do not specifically center on the preparation for disasters in the way that disaster recovery planning does. Incident Management primarily focuses on identifying, managing, and mitigating incidents after they occur. Risk Assessment is concerned with identifying potential risks and vulnerabilities but does not directly address recovery strategies. Monitoring Systems involve actively observing systems for anomalies and threats but are not geared toward preparing for recovery following a disaster. Therefore, Disaster Recovery Planning is the most appropriate choice when considering preparation for potential disasters.