Pass GAQM CBCP-002 Exam in First Attempt Guaranteed [Jul-2024]
Exam Sure Pass GAQM Certification with CBCP-002 exam questions
GAQM CBCP-002 exam consists of 150 multiple-choice questions that must be completed within 180 minutes. CBCP-002 exam is available in multiple languages and can be taken online or at a testing center. To be eligible for the exam, candidates must have at least two years of experience in business continuity planning or a related field. Upon passing the exam, candidates will receive the Certified Business Continuity Professional (CBCP) certification, which is recognized globally as a standard of excellence in the field of business continuity planning and management.
NEW QUESTION # 11
Which of the following should NOT be released in a publicly released BCP?
- A. Process flows
- B. Contact lists
- C. All of the above
- D. BIA results
Answer: C
Explanation:
Explanation
A publicly released BCP is a version of a business continuity plan that is intended for external audiences, such as customers, suppliers, partners, regulators, media, or the public. It should not contain sensitive or confidential information that may compromise the security or privacy of theorganization or its stakeholders.
Therefore, it should not include process flows that detail how each function or process is performed; contact lists that reveal personal or organizational information; BIA results that show criticality ratings or recovery time objectives; or any other information that may expose vulnerabilities or risks. Verified References:
https://www.ready.gov/business-continuity-planhttps://drii.org/resources/professionalpractices/EN
NEW QUESTION # 12
Which of the following can threats be considered? (Choose three)
- A. Water
- B. Technology failure
- C. Operational failure
- D. Fire
- E. Supply chain failure
Answer: A,B,D
Explanation:
Explanation
Threats can be considered any events or situations that can cause harm or disruption to an organization's functions or processes. Threats can be natural, human-made, or technological in origin. Some examples of threats are water (such as floods, leaks, or spills), technology failure (such as system crashes, cyberattacks, or power outages), and fire (such as arson, accidents, or explosions). Verified References:
https://www.iso.org/publication/PUB100442.htmlhttps://phoenixnap.com/blog/what-is-business-continuity-mana
NEW QUESTION # 13
Which type of continuity planning will enhance the functioning relationship with the organization's key suppliers, creating stronger assurances of continuous supply of information, material product and services?
- A. Multilateral
- B. Bilateral
- C. Unilateral
Answer: B
Explanation:
Explanation
Bilateral continuity planning is the type of continuity planning that will enhance the functioning relationship with the organization's key suppliers, creating stronger assurances of continuous supply of information, material product and services. Bilateral continuity planning is the process of developing and maintaining mutual agreements and arrangements between an organization and its key suppliers to ensure the continuity of their respective functions and processes in the event of a disruption. Bilateral continuity planning can help to reduce risks, costs, and dependencies, as well as to improve communication, coordination, and collaboration.
Verified References:
https://www.iso.org/publication/PUB100442.htmlhttps://phoenixnap.com/blog/what-is-business-continuity-mana
NEW QUESTION # 14
Which Process can be both time consuming and expensive as a result, management will expect tangible benefits to be achieved by the process?
- A. Business Contingency Planning
- B. Business Continuity Planning
- C. Business Process Planning
- D. Business Ethical Planning
Answer: B
Explanation:
Explanation
Business continuity planning is the process of identifying, developing, and implementing strategies and plans to ensure the continuity of an organization's critical functions and processes in the event of a disruption. It can be both time consuming and expensive, as it requires a thorough analysis of risks, impacts, resources, and recovery options. However, management will expect tangible benefits from the process, such as reduced losses, increased resilience, improved reputation, and compliance with regulations. Verified References:
https://www.ready.gov/business-continuity-plan https://drii.org/resources/professionalpractices/EN
NEW QUESTION # 15
A consultant is a person who borrows your watch to tell you the time, charges you for doingso and then sells you back your watch.
- A. False
- B. True
Answer: A
Explanation:
Explanation
A consultant is a person who borrows your watch to tell you the time, charges you for doing so and then sells you back your watch. This is false because it is a cynical and unfair description of a consultant's role and value. A consultant is a person who provides professional or expert advice in a specific field or domain. A consultant can help an organization to identify problems, analyze situations, develop solutions, implement changes, improve performance, or achieve goals. A consultant can also provide knowledge, skills, tools, or resources that the organization may not have or need temporarily. Verified References:
https://www.investopedia.com/terms/c/consultant.asphttps://phoenixnap.com/blog/what-is-business-continuity-m
NEW QUESTION # 16
In pre-crisis management, CM activities are focused on prevention and preparedness activities.
- A. True
- B. False
Answer: A
Explanation:
Explanation
In pre-crisis management, CM activities are focused on prevention and preparedness activities. This is true because pre-crisis management is the phase before a crisis occurs, where theorganization tries to anticipate and avoid potential crises or reduce their likelihood and impact. Pre-crisis management involves activities such as risk assessment, business impact analysis, business continuity planning, contingency planning, crisis communication planning, training and awareness, testing and exercising, monitoring and reviewing. Verified References:
https://www.cisco.com/c/en/us/solutions/hybrid-work/what-is-business-continuity.htmlhttps://phoenixnap.com/b
NEW QUESTION # 17
There are several reasons why a company would develop and implement a business continuity plan. Which of the following properly describes the best reason?
- A. Compliance with regulations
- B. To increase liability
- C. The continuation of a company
- D. Properly react to disasters
Answer: C
Explanation:
Explanation
The primary reason for developing and implementing a business continuity plan is to ensure the continuation of a company's critical functions and processes in the face of a disruption that may otherwise cause severe losses or damage to the company's reputation, assets, customers,or stakeholders. A business continuity plan can help a company to resume operations as quickly as possible after a disruption, minimize the impact on its performance and profitability, protect its brand and image, and fulfill its legal and contractual obligations.
Verified References:
https://www.ready.gov/business-continuity-planhttps://drii.org/resources/professionalpractices/EN
NEW QUESTION # 18
Which of the following exercises involve all teams?
- A. Facilitated discussion
- B. Multi-team simulation
- C. Full-scale exercise
- D. Plan walkthrough
Answer: C
Explanation:
Explanation
A full-scale exercise is a type of exercise that involves all teams. A full-scale exercise is a high-pressure exercise that simulates a realistic scenario of a disruption that affects all or most of the organization's functions and processes. A full-scale exercise tests the effectiveness and efficiency of the plans, procedures, systems, teams, and resources that are required to respond to and recover from a disruption. A full-scale exercise also evaluates the coordination and communication among all the teams and stakeholders involved.
Verified References:
https://www.ready.gov/business-continuity-planhttps://www.csoonline.com/article/515730/business-continuity-a
NEW QUESTION # 19
BIA helps you identify
- A. Critical interdependencies and interested parties
- B. Critical services and products
- C. Tangible and intangible impact of a disruption over period of time
- D. All of the above
Answer: D
Explanation:
Explanation
BIA helps to identify all of the above aspects of an organization's functions and processes. It helps to identify the critical services and products that the organization delivers to its customers and stakeholders, and the functions and processes that support them. It also helps to identify the critical interdependencies and interested parties that are involved in or affected by the organization's functions and processes, such as suppliers, partners, regulators, or employees. Moreover, it helps to identify the tangible and intangible impacts of a disruption tothe organization's functions and processes over a period of time, such as financial losses, reputational damage, legal liabilities, or customer dissatisfaction. Verified References:
https://www.ready.gov/business-impact-analysishttps://drii.org/resources/professionalpractices/EN
NEW QUESTION # 20
Which type of planning requires the commitment of significant financial and human resources for situations that may never even occur?
- A. Contingency
- B. Technical
- C. Review
- D. Operational
Answer: A
Explanation:
Explanation
Contingency planning is the type of planning that requires the commitment of significant financial and human resources for situations that may never even occur. Contingency planning is the process of developing alternative courses of action in case the preferred plan fails or an unexpected event occurs. Contingency planning aims to reduce the impact and uncertainty of potential disruptions and ensure the continuity of the organization's functions and processes. Contingency planning can be costly and time-consuming, as it involves identifying risks, analyzing scenarios, developing strategies, testing plans, and maintaining readiness.
Verified References:
https://www.iso.org/publication/PUB100442.htmlhttps://phoenixnap.com/blog/what-is-business-continuity-mana
NEW QUESTION # 21
Which control mechanism is the process by which an organization reduces the likelihood of a risk event occurring or mitigates the effects should it occur?
- A. Risk control
- B. Risk avoidance
- C. Risk variation
- D. Risk collision
Answer: A
Explanation:
Explanation
Risk control is the control mechanism that is the process by which an organization reduces the likelihood of a risk event occurring or mitigates the effects should it occur. Risk control is the process of implementing measures or actions to modify or influence the risk level of an organization. Risk control can involve various strategies, such as avoidance, reduction, transfer, sharing, retention, or acceptance. Risk control can help to improve the organization's resilience and performance. Verified References:
https://www.investopedia.com/terms/r/risk-control.asphttps://www.thebci.org/training-qualifications/good-practi
NEW QUESTION # 22
Individual accountability for the management of the risk should be clearly established.
- A. True
- B. False
Answer: A
Explanation:
Explanation
Individual accountability for the management of the risk should be clearly established. This is true because accountability is one of the key principles of business continuity management. Accountability means that each person involved in the business continuity management program has a clear understanding of their roles and responsibilities, as well as the authorityand resources to perform them. Accountability also means that each person is held responsible for their actions and outcomes, and that they report on their performance and progress regularly. Verified References:
https://www.iso.org/publication/PUB100442.htmlhttps://phoenixnap.com/blog/what-is-business-continuity-mana
NEW QUESTION # 23
Which statement is authorized at an appropriate level and should codify the company's attitude to a particular risk?
- A. Privacy Statement
- B. Policy Statement
- C. Process Document
- D. QMS Document
Answer: B
Explanation:
Explanation
A policy statement is a statement that is authorized at an appropriate level and should codify the company's attitude to a particular risk. A policy statement is a document that defines the scope, objectives, principles, roles, and responsibilities of a business continuity management program. It should also express the organization's commitment to managing risks and ensuring continuity of its critical functions and processes. A policy statement should be approved by senior management and communicated to all relevant stakeholders.
Verified References:
https://www.iso.org/publication/PUB100442.htmlhttps://phoenixnap.com/blog/what-is-business-continuity-mana
NEW QUESTION # 24
A disaster can also be declared for an illness pandemic where a significant portion of employees are sick.
- A. True
- B. False
Answer: A
Explanation:
Explanation
A disaster can also be declared for an illness pandemic where a significant portion of employees are sick. This is true because an illness pandemic is a type of natural disaster that can affect an organization's ability to continue its normal operations. An illness pandemic can cause absenteeism, reduced productivity, increased costs, supply chain disruptions, customer dissatisfaction, or regulatory compliance issues. Therefore, an organization may need to declare a disaster and activate its business continuity and disaster recovery plan if an illness pandemic impacts its critical functions and processes beyond an acceptable level. Verified References:
https://www.ready.gov/business-continuity-planhttps://www.csoonline.com/article/515730/business-continuity-a
NEW QUESTION # 25
Risks are diverse and arise from both external and internal sources.
- A. True
- B. False
Answer: A
Explanation:
Explanation
Risks are diverse and arise from both external and internal sources. This is true because risks are uncertainties that can have positive or negative effects on an organization's objectives. Risks can arise from various sources that are either outside or inside the organization's control. External sources of risk include natural disasters, cyberattacks, market fluctuations, customer preferences, competition, regulation, or political instability.
Internal sources of risk include human error, fraud, system failure, process inefficiency, organizational culture, or strategic decisions. Verified References:
https://www.investopedia.com/terms/b/businessrisk.asphttps://www.thebci.org/training-qualifications/good-pract
NEW QUESTION # 26
In the event of a disaster that destroys the physical office site operations will be relocated to a temporary site.
- A. True
- B. False
Answer: A
Explanation:
Explanation
In the event of a disaster that destroys the physical office site operations will be relocated to a temporary site.
This is true because one of the recovery strategies for a disaster is to have an alternate site where the critical functions and processes can be resumed until the primary site is restored or replaced. The alternate site can be a pre-arranged location, such as a rented office space, a hotel, or another branch of the same organization, or a mobile facility, such as a trailer or a container. The alternate site should have the necessary equipment, systems, data, and resources to support the continuity of the business. Verified References:
https://www.ready.gov/business-continuity-planhttps://www.csoonline.com/article/515730/business-continuity-a
NEW QUESTION # 27
......
Real GAQM CBCP-002 Exam Questions Study Guide: https://testinsides.vcedumps.com/CBCP-002-examcollection.html
