ISC CCSP Practice Test - Questions Answers, Page 31

BCDR strategies do not typically involve the entire operations of an organization, but only those deemed critical to their business.

Which concept pertains to the amount of services that need to be recovered to meet BCDR objectives?

During the course of an audit, which of the following would NOT be an input into the control requirements used as part of a gap analysis.

The GAPP framework was developed through a joint effort between the major Canadian and American professional accounting associations in order to assist their members with managing and preventing risks to the privacy of their data and customers.

Which of the following is the meaning of GAPP?

Which protocol operates at the network layer and provides for full point-to-point encryption of all communications and transmissions?

When data discovery is undertaken, three main approaches or strategies are commonly used to determine what the type of data, its format, and composition are for the purposes of classification.

Which of the following is NOT one of the three main approaches to data discovery?

There are many situations when testing a BCDR plan is appropriate or mandated.

Which of the following would not be a necessary time to test a BCDR plan?

Key maintenance and security are paramount within a cloud environment due to the widespread use of encryption for both data and transmissions.

Which of the following key-management systems would provide the most robust control over and ownership of the key-management processes for the cloud customer?

Security is a critical yet often overlooked consideration for BCDR planning.

At which stage of the planning process should security be involved?

Which type of testing uses the same strategies and toolsets that hackers would use?