Suggested Answer:A🗳️
Defining the scope of the plan is the very first step in the overall process. Security should be included from the very earliest stages and throughout the entire process. Bringing in security at a later stage can lead to additional costs and time delays to compensate for gaps in planning. Risk assessment, requirements gathering, and analysis are all later steps in the process, and adding in security at any of those points can potentially cause increased costs and time delays.
Security should be involved as early as possible in the Business Continuity and Disaster Recovery (BCDR) planning process. The best stage to introduce security considerations is during requirements gathering, where the organization defines critical business functions, dependencies, and security needs.
Security is integral to BCDR planning, ensuring that recovery strategies do not introduce vulnerabilities.
This phase defines access controls, encryption, backup security, and compliance requirements.
Early involvement of security helps ensure that BCDR plans align with organizational security policies and regulations (e.g., GDPR, HIPAA).
A. Scope Definition → Defines high-level objectives but does not include detailed security requirements yet.
in scope defintion phase we focus only in definition onf critical business service, why security is included, basically it need to be addedd in the phase of gathering, more logical i think
upvoted 2 times
...
This section is not available anymore. Please use the main Exam Page.CCSP Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
MaciekMT
1 month, 2 weeks agokepalon
6 months, 3 weeks agoVSN80
1 year, 4 months agoSa007788
1 year, 8 months ago