ISC2 ISSMP Domain 5: Contingency Management Welcome to your ISC2 ISSMP Domain 5: Contingency Management 1. ISSMP: Contingency Management What is the primary objective of conducting a Business Impact Analysis (BI A. in the context of contingency management? A) To evaluate the efficiency of the organization's IT infrastructure B. To identify critical business functions and the impact of their disruption C. To assess the organization's compliance with industry security standards D. To measure the organization's financial stability None 2. ISSMP: Contingency Management In contingency planning, what role does a "hot site" play in disaster recovery? A. It provides a location with minimal equipment where staff can relocate in case of disaster. B. It offers a fully equipped facility where an organization can resume operations immediately after a disaster. C. It serves as a storage site for backup data with no operational capabilities. D. It is used for conducting regular business operations under normal conditions. None 3. ISSMP: Contingency Management Which of the following best describes the purpose of a "Disaster Recovery Plan" (DRP)? A. To ensure the safety and well-being of employees during an office renovation B. To guide the organization in recovering IT systems and operations after a disaster C. To outline strategies for maintaining profitability during market downturns D. To provide a legal framework for addressing data breaches None 4. ISSMP: Contingency Management What is the significance of "redundant systems" in the context of contingency management? A. They are used to duplicate business marketing efforts. B. They provide an alternative means of performing operations to ensure availability. C. They serve as backup personnel in case of staff shortages. D. They are legal documents that duplicate contractual agreements. None 5. ISSMP: Contingency Management In the context of contingency management, what is the primary goal of "succession planning"? A. To ensure the organization remains competitive in the market B. To identify and develop new markets for product expansion C. To provide a strategy for replacement of key personnel in case of unexpected absence D. To plan for the systematic replacement of outdated technology None 6. ISSMP: Contingency Management How does "incident response" differ from "disaster recovery" in the context of contingency management? A. Incident response addresses only financial losses, while disaster recovery focuses on IT systems. B. Incident response is a proactive measure, while disaster recovery is reactive. C. Incident response deals with immediate containment and analysis of security incidents, while disaster recovery focuses on restoring operations post-disaster. D. Incident response is concerned with legal compliance, while disaster recovery deals with data backup. None 7. ISSMP: Contingency Management What is the role of "tabletop exercises" in contingency management? A. To physically test the strength and durability of office furniture B. To provide a simulated environment for testing the organization's contingency plans C. To facilitate negotiations for business partnerships and mergers D. To assess the financial implications of potential business disruptions None 8. ISSMP: Contingency Management Which of the following best defines the "Recovery Point Objective" (RPO) in contingency management? A. The maximum tolerable length of time that a business process can be disrupted B. The maximum targeted period in which data might be lost from an IT service due to a major incident C. The financial threshold beyond which a business cannot recover from a disaster D. The specific point in time to which systems and data must be recovered after an outage None 9. ISSMP: Contingency Management In contingency management, what is the primary focus of a "Crisis Communication Plan"? A. To outline the marketing strategy during a product launch B. To detail the steps for negotiating with hostile entities C. To specify how information will be communicated during and after a crisis D. To document the technical specifications of communication systems None 10. ISSMP: Contingency Management What principle underlies the concept of "mutual aid agreements" in contingency management? A. Legal requirements for cross-border data transfer B. Collaborative agreements between organizations to provide assistance in the event of a disaster C. Financial transactions between companies during mergers and acquisitions D. Sharing of proprietary technologies for research and development None 11. ISSMP: Contingency Management In the development of a comprehensive contingency plan, what role does the "risk assessment" process play? A. It determines the budget allocation for marketing strategies. B. It identifies and evaluates risks to prioritize contingency measures. C. It assesses the performance of the IT department. D. It evaluates employee satisfaction and engagement levels. None 12. ISSMP: Contingency Management What is the significance of "alternate processing sites" in the context of IT disaster recovery planning? A. They are locations where promotional events are held. B. They offer backup facilities for data processing in case the primary site is unavailable. C. They are used for employee training and development. D. They serve as additional storage sites for archival data. None 13. ISSMP: Contingency Management How does the concept of "recovery time objective" (RTO) influence contingency planning for IT systems? A. It dictates the acceptable amount of time for restoring a system's functionality after a disruption. B. It specifies the duration of employee training programs. C. It determines the lifespan of IT hardware before replacement. D. It influences the scheduling of system maintenance windows. None 14. ISSMP: Contingency Management What role do "emergency operations centers" 'EOC' play in contingency management? A. They serve as locations for routine IT system upgrades. B. They act as centralized command facilities for coordinating response efforts during emergencies. C. They are used for conducting employee performance reviews. D. They function as primary data centers under normal operations. None 15. ISSMP: Contingency Management In contingency management, how is the "incident command system" (ICS) utilized? A. As a framework for conducting financial audits B. As a standardized approach to command, control, and coordination during emergency response C. As a system for managing IT service requests D. As a protocol for data encryption and cybersecurity None 16. ISSMP: Contingency Management What is the primary purpose of "service level agreements" (SLAs) in contingency planning? A. To define the scope of marketing campaigns B. To outline performance expectations and responsibilities for third-party service providers C. To establish employee health and wellness programs D. To set guidelines for corporate social responsibility initiatives None 17. ISSMP: Contingency Management How do "redundant communication paths" enhance organizational resilience in contingency management? A. By providing alternative routes for data transmission in case the primary path fails B. By doubling the marketing channels available to the organization C. By offering multiple methods for employee appraisals D. By ensuring that all stakeholders receive duplicated messages None 18. ISSMP: Contingency Management In the development of contingency plans, what is the purpose of "scenario analysis"? A. To predict financial market trends B. To facilitate strategic business development C. To evaluate potential emergency situations and their impacts on operations D. To assess the effectiveness of employee training programs None 19. ISSMP: Contingency Management What is the significance of "continuity of operations planning" (COOP) in the public sector? A. To ensure that government services remain available to the public during and after emergencies B. To manage the daily operations of public transportation systems C. To oversee the construction of public infrastructure projects D. To regulate the allocation of public funds for education None 20. ISSMP: Contingency Management What best describes the function of "continuous data protection" (CDP) in contingency management? A. It is a method for real-time, automatic saving of changes to data, providing immediate recovery in case of data loss. B. It involves periodic marketing analysis to ensure continuous brand visibility. C. It is a strategy for ongoing employee performance monitoring and feedback. D. It serves as a continuous audit mechanism for regulatory compliance. None 1 out of 20 Time is Up! Time's up
