Quiz CISSP

Quiz CISSP, Certified Information Systems Security Professional (update September 5th,2013)

The reason to implement additional controls or safeguards is to:

Which of the following statements most accurately describes business impact analysis?

During the risk analysis phase of the planning, which of the following actions could manage threats or mitigate the eff ects of an event?

Business impact analysis is performed to identify:

Which of the following statements best describes the extent to which an organization should address business continuity or disaster recovery planning?

Regardless of industry, which element of legal and regulatory requirements are all industries subject to?

Which phrase best defines a business continuity/disaster recovery plan?

What would the items in the following graphic best be collectively called?

Disaster recovery plans can stay updated by doing any of the following except:

What is the second step that is missing in the following graphic?