New Year Sale 2026! Hurry Up, Grab the Special Discount - Save 25% - Ends In 00:00:00 Coupon code: SAVE25
Welcome to Pass4Success

- Free Preparation Discussions
Mail Us support@pass4success.com
Location US
Mob_nav_barsMENU

ISC2 CSSLP Exam - Topic 9 Question 30 Discussion

Actual exam question for ISC2's CSSLP exam
Question #: 30
Topic #: 9
[All CSSLP Questions]

Which of the following recovery plans includes specific strategies and actions to deal with specific variances to assumptions resulting in a particular security problem, emergency, or state of affairs?

Show Suggested Answer Hide Answer
Suggested Answer: D

A contingency plan is a plan devised for a specific situation when things could go wrong. Contingency plans include specific strategies and

actions to deal with specific variances to assumptions resulting in a particular problem, emergency, or state of affairs. They also include a

monitoring process and triggers for initiating planned actions.

Answer A is incorrect. Disaster recovery is the process, policies, and procedures related to preparing for recovery or continuation of

technology infrastructure critical to an organization after a natural or human-induced disaster.

Answer B is incorrect. It deals with the plans and procedures that identify and prioritize the critical business functions that must be

preserved.

Answer C is incorrect. It includes the plans and procedures documented that ensure the continuity of critical operations during any

period where normal operations are impossible.


by Carmela at May 08, 2022, 12:06 AM

Limited Time Offer

25%

Off

Get Premium CSSLP Questions as Interactive Web-Based Practice Test or PDF

Contribute your Thoughts:

0/2000 characters
Submit Cancel
Rodrigo
4 months ago
Sounds too vague, how can a plan cover all scenarios?
upvoted 0 times
...
Laurel
4 months ago
I agree, contingency plans are all about specific actions for variances.
upvoted 0 times
...
Crista
4 months ago
Wait, are we sure it's not the business continuity plan?
upvoted 0 times
...
Tuyet
4 months ago
I think it's more about the disaster recovery plan.
upvoted 0 times
...
Antonio
5 months ago
Definitely a contingency plan!
upvoted 0 times
...
Cherri
5 months ago
Could it be C? The Continuity of Operations Plan seems to fit, but I'm not confident about the specifics.
upvoted 0 times
...
Berry
5 months ago
I'm not entirely sure, but I remember something about disaster recovery plans focusing more on IT systems rather than specific variances.
upvoted 0 times
...
Mariann
5 months ago
I think the answer might be D, the contingency plan, since it deals with specific actions for unexpected issues.
upvoted 0 times
...
Rikki
5 months ago
I feel like this question is similar to one we practiced about business continuity plans, but I can't recall the exact differences.
upvoted 0 times
...
Valda
5 months ago
I'm confident I know the answer to this one. Testers are responsible for identifying and documenting defects, so the correct answer is C - "Non-detected defects". The other options don't seem to align with the typical outputs of the testing process.
upvoted 0 times
...
Hortencia
5 months ago
I definitely remember that creating multiple sites for different platforms is usually not recommended because it complicates updates.
upvoted 0 times
...

Save Cancel