risk management

1.How does a BCP help mitigate risk?
2. What kind of risk does a BCP help mitigate?
3. If you have business liability insurance, asset replacement insurance, and natural disaster
insurance, do you still need a BCP or disaster recovery plan (DRP)? Why or why not?
4. From your scenario and BIA from the Performing a Business Impact Analysis for a Mock IT
Infrastructure lab in this lab manual, what were the mission-critical business functions and
operations you identified? Are these the focus of your BCP?
5. What does a BIA help define for a BCP?
6. Who should develop and participate in an organization’s BCP?
7. Why do disaster planning and disaster recovery belong in a BCP?
8. What is the purpose of having documented IT system, application, and data recovery procedures
and steps?
9. Why must you include testing of the plan in your BCP?
10. How often should you update your BCP document?
11. In your BCP outline, where will you find a list of prioritized business operations, functions, and
processes?
12. In your BCP outline, where will you find detailed backup and system recovery information?
13. In your BCP outline, where will you find a policy definition defining how to engage your BCP
due to a major outage or disaster?
14. In your BCP outline, where will you find a policy definition defining the resources that are
needed to perform the tasks associated with business continuity or disaster recovery?
15. What is the purpose of testing your BCP and DRP procedures, backups, and recovery steps?