• Home
  • Articles
  • [Q17-Q32] Get New 2024 GAQM CBCP-002 Exam Dumps Bundle On flat Updated Dumps!

[Q17-Q32] Get New 2024 GAQM CBCP-002 Exam Dumps Bundle On flat Updated Dumps!

Share

Get New 2024 GAQM exam CBCP-002 Dumps Bundle On flat Updated Dumps!

Full CBCP-002 Practice Test and 42 unique questions with explanations waiting just for you, get it now!

NEW QUESTION # 17
In pre-crisis management, CM activities are focused on prevention and preparedness activities.

  • A. True
  • B. False

Answer: A

Explanation:
Explanation
In pre-crisis management, CM activities are focused on prevention and preparedness activities. This is true because pre-crisis management is the phase before a crisis occurs, where theorganization tries to anticipate and avoid potential crises or reduce their likelihood and impact. Pre-crisis management involves activities such as risk assessment, business impact analysis, business continuity planning, contingency planning, crisis communication planning, training and awareness, testing and exercising, monitoring and reviewing. Verified References:
https://www.cisco.com/c/en/us/solutions/hybrid-work/what-is-business-continuity.htmlhttps://phoenixnap.com/b


NEW QUESTION # 18
Which of the following are the four T's of risk guidance produced by by the Office of Government Commerce? (choose four)

  • A. Treat
  • B. Transfer
  • C. Terminate
  • D. Title
  • E. Tolerate
  • F. Technique

Answer: A,B,C,E

Explanation:
Explanation
The four T's of risk guidance produced by the Office of Government Commerce are transfer, tolerate, treat, and terminate. They are:
Transfer: This strategy involves transferring or sharing some or all of the responsibility or impact of a risk to another party, such as an insurer, a supplier, or a partner.
Tolerate: This strategy involves accepting or retaining a risk without taking any further action to reduce it, either because the risk level is acceptable or because the cost or effort of reducing it is not justified.
Treat: This strategy involves taking steps to reduce the likelihood or impact of a risk to an acceptable level, such as implementing controls, mitigations, or contingency plans.
Terminate: This strategy involves eliminating or avoiding a risk by discontinuing or changing the activity that causes it. Verified References: https://www.investopedia.com/terms/t/the-four-ts.asp
https://www.thebci.org/training-qualifications/good-practice-guidelines.html


NEW QUESTION # 19
Which of the following are three components of business continuity plan? (Choose three)

  • A. Problem management
  • B. Business recovery
  • C. Disaster recovery
  • D. Emergency response
  • E. Incident management

Answer: C,D,E

Explanation:
Explanation
The three components of a business continuity plan are emergency response, incident management, and disaster recovery. They are:
Emergency response: This component involves the immediate actions taken to protect the life, health, and safety of people and the environment in the event of a disruption. Emergency response may include activating alarms, evacuating premises, contacting emergency services, or providing first aid.
Incident management: This component involves the coordination and communication of the activities and resources required to manage and resolve a disruption. Incident management may include activating the business continuity team, declaring a disaster, assessing the impact, activating the recovery strategies, or communicating with stakeholders.
Disaster recovery: This component involves the restoration and recovery of the IT systems, data, and infrastructure that support the critical functions and processes of the organization. Disaster recovery may include activating the backup systems, restoring the data, repairing or replacing the equipment, or testing the functionality. Verified References: https://www.ready.gov/business-continuity-plan
https://www.csoonline.com/article/515730/business-continuity-and-disaster-recovery-planning-the-basics.


NEW QUESTION # 20
Which certification centre provides the physical infrastructure?

  • A. Facility
  • B. Service

Answer: A

Explanation:
Explanation
A facility certification center is a center that provides the physical infrastructure for testing and certifying the functionality and performance of products, systems, or services. A facility certification center may have specialized equipment, tools, environments, or standards that can simulate real-world conditions or scenarios.
A facility certification center may also have qualified staff, experts, or auditors who can conduct the testing and certification process. Verified References:
https://www.iso.org/publication/PUB100442.htmlhttps://www.cisco.com/c/en/us/solutions/hybrid-work/what-is-


NEW QUESTION # 21
Which of the following exercises involve all teams?

  • A. Facilitated discussion
  • B. Plan walkthrough
  • C. Multi-team simulation
  • D. Full-scale exercise

Answer: D

Explanation:
Explanation
A full-scale exercise is a type of exercise that involves all teams. A full-scale exercise is a high-pressure exercise that simulates a realistic scenario of a disruption that affects all or most of the organization's functions and processes. A full-scale exercise tests the effectiveness and efficiency of the plans, procedures, systems, teams, and resources that are required to respond to and recover from a disruption. A full-scale exercise also evaluates the coordination and communication among all the teams and stakeholders involved.
Verified References:
https://www.ready.gov/business-continuity-planhttps://www.csoonline.com/article/515730/business-continuity-a


NEW QUESTION # 22
In the event of a disaster that destroys the physical office site operations will be relocated to a temporary site.

  • A. True
  • B. False

Answer: A

Explanation:
Explanation
In the event of a disaster that destroys the physical office site operations will be relocated to a temporary site.
This is true because one of the recovery strategies for a disaster is to have an alternate site where the critical functions and processes can be resumed until the primary site is restored or replaced. The alternate site can be a pre-arranged location, such as a rented office space, a hotel, or another branch of the same organization, or a mobile facility, such as a trailer or a container. The alternate site should have the necessary equipment, systems, data, and resources to support the continuity of the business. Verified References:
https://www.ready.gov/business-continuity-planhttps://www.csoonline.com/article/515730/business-continuity-a


NEW QUESTION # 23
Which statement is authorized at an appropriate level and should codify the company's attitude to a particular risk?

  • A. Process Document
  • B. Privacy Statement
  • C. QMS Document
  • D. Policy Statement

Answer: D

Explanation:
Explanation
A policy statement is a statement that is authorized at an appropriate level and should codify the company's attitude to a particular risk. A policy statement is a document that defines the scope, objectives, principles, roles, and responsibilities of a business continuity management program. It should also express the organization's commitment to managing risks and ensuring continuity of its critical functions and processes. A policy statement should be approved by senior management and communicated to all relevant stakeholders.
Verified References:
https://www.iso.org/publication/PUB100442.htmlhttps://phoenixnap.com/blog/what-is-business-continuity-mana


NEW QUESTION # 24
What is the frequency of BCP testing for critical processes?

  • A. Quarterly
  • B. As per calendar planned at beginning of the year
  • C. Annually
  • D. Half-yearly

Answer: D

Explanation:
Explanation
BCP testing is the process of verifying the effectiveness of a business continuity plan and ensuring that it meets the business objectives and requirements. BCP testing should be conducted regularly to identify any gaps or weaknesses in the plan and to update it accordingly1. While the number of tests to be conducted depends on the industry background, size and complexity, available resources, and BCP maturity levels, it is recommended that the tests are conducted twice a year for critical processes but at least minimum once a year1.


NEW QUESTION # 25
A consultant is a person who borrows your watch to tell you the time, charges you for doingso and then sells you back your watch.

  • A. True
  • B. False

Answer: B

Explanation:
Explanation
A consultant is a person who borrows your watch to tell you the time, charges you for doing so and then sells you back your watch. This is false because it is a cynical and unfair description of a consultant's role and value. A consultant is a person who provides professional or expert advice in a specific field or domain. A consultant can help an organization to identify problems, analyze situations, develop solutions, implement changes, improve performance, or achieve goals. A consultant can also provide knowledge, skills, tools, or resources that the organization may not have or need temporarily. Verified References:
https://www.investopedia.com/terms/c/consultant.asphttps://phoenixnap.com/blog/what-is-business-continuity-m


NEW QUESTION # 26
BIA helps you identify

  • A. All of the above
  • B. Critical services and products
  • C. Tangible and intangible impact of a disruption over period of time
  • D. Critical interdependencies and interested parties

Answer: A

Explanation:
Explanation
BIA helps to identify all of the above aspects of an organization's functions and processes. It helps to identify the critical services and products that the organization delivers to its customers and stakeholders, and the functions and processes that support them. It also helps to identify the critical interdependencies and interested parties that are involved in or affected by the organization's functions and processes, such as suppliers, partners, regulators, or employees. Moreover, it helps to identify the tangible and intangible impacts of a disruption tothe organization's functions and processes over a period of time, such as financial losses, reputational damage, legal liabilities, or customer dissatisfaction. Verified References:
https://www.ready.gov/business-impact-analysishttps://drii.org/resources/professionalpractices/EN


NEW QUESTION # 27
Damage assessment includes all but which of the following steps?

  • A. Having the insurance company declare the total extent of the damages.
  • B. Estimate the time it will take to restore critical business functions.
  • C. Evaluating the time to restore operations and if greater than the MTD, a disaster should be declared and BCP enacted
  • D. Identifying the affected business functions.

Answer: A

Explanation:
Explanation
Damage assessment is the process of evaluating the extent and severity of the damage caused by a disruption to an organization's facilities, equipment, systems, data, records, or personnel. It includes identifying the affected business functions and processes, estimating the time it will take to restore them to normal or acceptable levels of operation, and evaluating whether the recovery time exceeds the maximum tolerable downtime (MTD) for each function or process. If so, a disaster should be declared and the business continuity plan should be activated. Having the insurance company declare the total extent of the damages is not part of the damage assessment process, as it may take longer than the MTD and may not reflect the operational impact of the damage. Verified References:
https://www.fema.gov/pdf/emergency/nims/Damage_Assessment.pdfhttps://drii.org/resources/professionalpracti


NEW QUESTION # 28
In the event of a disaster, notification shall be given to each employee by either the HR Department Manager or through the firm's emergency notice system.

  • A. True
  • B. False

Answer: A

Explanation:
Explanation
In the event of a disaster, notification shall be given to each employee by either the HR Department Manager or through the firm's emergency notice system. This is true because communication is a vital component of any disaster recovery and business continuity plan. Employees need to be informed of the situation, their roles and responsibilities, and the actions they need to take to ensure their safety and the continuity of the business.
The HR Department Manager or the emergency notice system are the designated channels for communicating with employees during a disaster. Verified References:
https://www.ready.gov/business-continuity-planhttps://www.csoonline.com/article/515730/business-continuity-a


NEW QUESTION # 29
A formal "disaster" can only be declared by the firm owners or by the IT Department Manager.

  • A. True
  • B. False

Answer: B

Explanation:
Explanation
A formal "disaster" can only be declared by the firm owners or by the IT Department Manager. This is false because a formal "disaster" can be declared by any authorized person who has the responsibility and authority to activate the business continuity and disaster recovery plan. The authorized person may vary depending on the type, scope, and severity of the disaster, but it should be clearly defined in the plan who can declare a disaster and under what circumstances. The authorized person should also communicate the declaration of a disaster to all relevant stakeholders, such as employees, customers, suppliers, partners, regulators, media, or the public. Verified References:
https://www.ready.gov/business-continuity-planhttps://www.csoonline.com/article/515730/business-continuity-a


NEW QUESTION # 30
Which of the following is a low-pressure exercise that uses presentation techniques including videos, slides, and handouts, so that participants fully understand their plans?

  • A. Facilitated discussion
  • B. Virtualization
  • C. Single team simulation
  • D. Plan walkthrough

Answer: D

Explanation:
Explanation
A plan walkthrough is a low-pressure exercise that uses presentation techniques including videos, slides and handouts, so that participants fully understand their plans1.


NEW QUESTION # 31
Risks are diverse and arise from both external and internal sources.

  • A. True
  • B. False

Answer: A

Explanation:
Explanation
Risks are diverse and arise from both external and internal sources. This is true because risks are uncertainties that can have positive or negative effects on an organization's objectives. Risks can arise from various sources that are either outside or inside the organization's control. External sources of risk include natural disasters, cyberattacks, market fluctuations, customer preferences, competition, regulation, or political instability.
Internal sources of risk include human error, fraud, system failure, process inefficiency, organizational culture, or strategic decisions. Verified References:
https://www.investopedia.com/terms/b/businessrisk.asphttps://www.thebci.org/training-qualifications/good-pract


NEW QUESTION # 32
......

Reduce Your Chance of Failure in CBCP-002 Exam: https://guidetorrent.dumpstorrent.com/CBCP-002-exam-prep.html

Related Articles

more
GAQM CBCP-002 Certification Practice Exam

Copyright © 2026 DumpsTorrent NETWORK CO.,LIMITED. All Rights Reserved. All trademarks used are properties of their respective owners. Privacy Policy