11.

Contingency planning involves preparing for unexpected events or disasters that could disrupt normal
business operations. It differs from routine management planning in that it specifically focuses on
preparing for and responding to unforeseen events, whereas routine management planning deals with day-
to-day operations and expected challenges. The components of contingency planning include incident
response planning, disaster recovery planning, and business continuity planning .

12. The Incident Response (IR) plan is used to guide the immediate response to a security incident or
breach. It outlines the steps to be taken to contain the incident, mitigate its impact, and restore normal
operations as quickly as possible .

13. The Disaster Recovery (DR) plan is used when a significant disruption or disaster occurs, such as a fire,
flood, or cyber-attack, that affects the organization's IT systems and infrastructure. It focuses on restoring IT
systems and operations to minimize downtime and data loss .

14. The Business Continuity (BC) plan is used when the damage is major or ongoing, requiring more than
simple restoration of information and resources. It establishes critical business functions at an alternate
site and ensures the continuity of essential business operations . The determination of when to use the IR,
DR, and BC plans depends on the nature and severity of the incident or disaster, as well as the specific
impact on the organization's operations and resources.

15. The five elements of a business impact analysis (BIA) process typically include:

a. Identification and prioritization of threat attacks

b. Business unit analysis

c. Attack success scenario development

d. Potential damage assessment

e. Subordinate plan classification .