CBCI STUDY GUIDE EXAM QUESTIONS WITH ANSWERS
2025/2026
Business continuity governance focuses on - Oversight and support.
Monitoring and review.
Alignment with organisational objectives
Compliance with legal and regulatory requirements.
Business continuity roles - Should be embedded in the job descriptions and
performance plans.
Roles - top management - Leadership, commitment and resources
Roles - steering group - Oversee, advise and manage - making the recommendations to
top mgt.
Business continuity plan owner - Make sure the plan reflects the business continuity
capability.
Business Continuity Programme - Ongoing mgt and governance process appropriately
resourced to implement and maintain business continuity mgt.
Business continuity mgt. programme documentation - Business Continuity policy
Business continuity programme of activities
Project management documentation
Meeting agendas, minutes and action trackers
Skills and competancy
BIA questionnaires
Response structure
Plans
Exercise programmes
Crisis mgt. plans
Outsource contracts
SLA with customers and suppliers
General Principles of Embedding - Ensure business continuity is a central p[art of what
the organisation does.
Make sure its aligned with the organisational goals and objectives.
Health and saftey and data protection are embedded in similar ways
Process - Engage the key players
Use existing communication channels to get the message across.
Build a network of champions across the business
Methods & Techniques - Sector peers having disasters - make it relevant to the persons
short term objectives. Learn lessons from peers.
, Get business continuity onto meeting agendas
Schedule exercises for holidays or quieter times
Make sure business continuity is part of supply change mgt.
Competancies & Skills - Embedding - Anyone with roles and experience should have
the right education, training and experience for their role in the BCMP This includes key
personnel in the supply chain and outrsourced service providers.
Make sure there are alternates.
Competancies & Skills - Incident Response - Could include:
First aid, ICT, crisis mgt and leadership, damage mgt.
Four types of BIA - An initial BIA
A product and service BIA
A process BIA
An activity BIA
Business Continuity Requirements are - The timeframes, resources and capabilities
necessary to continue to deliver the prioritised products, services, processes and
activities following a disruption.
Product and services - Sometimes referred to as beneficial outcomes by an
organisation to its customers, reciepients or interested parties.
A process - Something that transforms inputs into outputs.
MTPD - Maximum tolerable period of disruption
MAO - Maximum acceptable outage
RTO - Recovery Time Objective
MTPD or MAO - The time it takes for adverse impacts that might arise as a result of not
performing an activity to become unacceptable.
Methods for collecting BIA information - Workshops
Questionnaires
Interviews
Documents to be reviewed as part of BIA - Existing BIA information
Strategic plans
Annual reports
Legal or regulatory plans
SLA
Risk register
2025/2026
Business continuity governance focuses on - Oversight and support.
Monitoring and review.
Alignment with organisational objectives
Compliance with legal and regulatory requirements.
Business continuity roles - Should be embedded in the job descriptions and
performance plans.
Roles - top management - Leadership, commitment and resources
Roles - steering group - Oversee, advise and manage - making the recommendations to
top mgt.
Business continuity plan owner - Make sure the plan reflects the business continuity
capability.
Business Continuity Programme - Ongoing mgt and governance process appropriately
resourced to implement and maintain business continuity mgt.
Business continuity mgt. programme documentation - Business Continuity policy
Business continuity programme of activities
Project management documentation
Meeting agendas, minutes and action trackers
Skills and competancy
BIA questionnaires
Response structure
Plans
Exercise programmes
Crisis mgt. plans
Outsource contracts
SLA with customers and suppliers
General Principles of Embedding - Ensure business continuity is a central p[art of what
the organisation does.
Make sure its aligned with the organisational goals and objectives.
Health and saftey and data protection are embedded in similar ways
Process - Engage the key players
Use existing communication channels to get the message across.
Build a network of champions across the business
Methods & Techniques - Sector peers having disasters - make it relevant to the persons
short term objectives. Learn lessons from peers.
, Get business continuity onto meeting agendas
Schedule exercises for holidays or quieter times
Make sure business continuity is part of supply change mgt.
Competancies & Skills - Embedding - Anyone with roles and experience should have
the right education, training and experience for their role in the BCMP This includes key
personnel in the supply chain and outrsourced service providers.
Make sure there are alternates.
Competancies & Skills - Incident Response - Could include:
First aid, ICT, crisis mgt and leadership, damage mgt.
Four types of BIA - An initial BIA
A product and service BIA
A process BIA
An activity BIA
Business Continuity Requirements are - The timeframes, resources and capabilities
necessary to continue to deliver the prioritised products, services, processes and
activities following a disruption.
Product and services - Sometimes referred to as beneficial outcomes by an
organisation to its customers, reciepients or interested parties.
A process - Something that transforms inputs into outputs.
MTPD - Maximum tolerable period of disruption
MAO - Maximum acceptable outage
RTO - Recovery Time Objective
MTPD or MAO - The time it takes for adverse impacts that might arise as a result of not
performing an activity to become unacceptable.
Methods for collecting BIA information - Workshops
Questionnaires
Interviews
Documents to be reviewed as part of BIA - Existing BIA information
Strategic plans
Annual reports
Legal or regulatory plans
SLA
Risk register
