312-76 Exam Dumps : EC-Council Disaster Recovery Professional v3 (EDRP)

Assessment Scale: In risk management, an assessment scale is used to quantify the impact of a risk. This scale typically includes levels of severity (e.g., low, medium, high) and may assign numerical values to each level.

Recovery Time: Refers to the time it takes to restore systems or operations after a disruption.

Frequency: Refers to how often a risk is likely to occur.

Recovery Scale: While "recovery" is a related term, the scale used to determine the severity of the risk is the "assessment scale".

The Review Phase of scenario training occurs after execution and involves a debrief with participants to gather feedback, assess performance, and identify improvements. This aligns with the question’s focus on obtaining feedback post-training.

Option A (Execution Phase):The active running of the scenario, no debrief yet.

Option C (Warning Phase):Not a standard phase; implies pre-event alerts.

Option D (Planning Phase):Prepares the scenario, not for feedback collection.

“The Review Phase follows scenario execution, involving a debrief to collect participant feedback and refine the training process” (Module: Training and Awareness, Section: Training Phases).

ISO/IEC 27005 is an information security risk management standard that requires identifying, assessing, and prioritizing risks (like George’s exercise) to develop a mitigation plan. It fits his prioritization of electrical surges.

Option A (ISO 27001):Broad security management, not risk-specific.

Option B (INCITS 483-2012):Virtualization security, not risk management.

Option C (ISO 27031):ICT continuity, narrower than 27005.

“ISO/IEC 27005 guides organizations in risk identification, assessment, and prioritization, forming the basis for security and DR planning” (Module: Risk Management, Section: Standards).