Certified Information Security Manager (CISM) — Question 165

Which of the following is the MOST effective approach to ensure seamless integration between the business continuity plan (BCP) and the incident response plan?

Answer options

• A. The BCP manager is included in the core incident response team.
• B. Criteria for escalating to the BCP manager are in the incident response plan.
• C. Both response teams contain the same members.
• D. Consistent event classifications are used in both plans.

Correct answer: D

Explanation

Using consistent event classifications in both the BCP and incident response plan ensures that all team members interpret incidents similarly, facilitating effective communication and action. While including the BCP manager in the response team or having escalation criteria is helpful, they do not guarantee seamless integration like shared classifications do. Having the same members in both teams may not address divergent operational needs between the plans.