CompTIA Security+ Exam Prep

Category - Operations

Start a Study Session Sign up for Question of the Day

A Risk Assessment is one of the first tasks to be completed in the creation of a Business Continuity Plan. What is the purpose of the Risk Assessment?

To provide a list of risks to the organization, along with potential countermeasures
To assemble a list of past crises that the organization has endured
To identify and analyze potential risks that may impact the organization
To create a matrix of potential risks and who is responsible for the countermeasure for each risk.

Explanation

Answer: C - The Risk Assessment is designed to identify potential risks that may impact the organization and then to analyze the likelihood of those risks occurring, as well as their potential impact if they were to occur.

A Risk Assessment should only identify and rank the potential risks to the organization, such as earthquakes or bomb threats. The Risk Assessment is not designed to assign countermeasures or responsibility for dealing with each potential crisis. Potential risks that could be included in a Risk Assessment are hurricane, flood, tornado, bombing, kidnapping, sabotage, product recall, or power failure.

Previous Next

Was this helpful? Upvote!

Start a Study Session Sign up for Question of the Day

CompTIA Security+ Exam Prep

Top questions

Related questions

Most popular on PracticeQuiz

Ad-Blocker not supported

CompTIA Security+ Exam Prep

Top questions

Related questions

Most popular on PracticeQuiz