DRI Cheat Sheet 2026
The 30 highest-yield DRI facts, distilled from real exam questions. Print it, save it as a PDF, or study it here — free, no sign-up.
100 questions
150 min time limit
75.00% to pass
- Which of the following is a characteristic of a GOOD Business Continuity Plan document? → Concise, actionable checklists with clear roles and contact information
- In DRI's Professional Practices, which element is critical when onboarding a new critical vendor? → Validating that the vendor has a tested and documented BC plan
- What role does documentation play in Disaster Recovery Institute International professional practice? → It creates accountability, supports decision-making, and provides legal protection
- Why is staying current with industry developments important for Disaster Recovery Institute International professionals? → To provide the best possible service using current knowledge and practices
- How should risks be prioritized? → Based on probability of occurrence and potential impact
- During a crisis, which communication principle is MOST critical for maintaining stakeholder trust? → Providing timely, accurate, and transparent information
- In the context of crisis management, what does the term 'Joint Information Center (JIC)' refer to? → A facility where response organizations coordinate public information activities
- In supply chain risk management, what does 'geographic diversification' mean? → Sourcing from suppliers in different locations to reduce regional disaster exposure
- Why is staying current with industry developments important for Disaster Recovery Institute International professionals? → To provide the best possible service using current knowledge and practices
- What is the consequence of practicing outside the defined scope of practice? → Potential license revocation, legal liability, and risk to public safety
- In the context of the Whole Community approach promoted by FEMA, which group is explicitly included as a key partner in emergency preparedness? → Individuals, families, nonprofits, businesses, and government agencies
- What is a disaster recovery plan (DRP)? → A plan to recover data and critical systems
- According to DRI professional practices, what is the recommended minimum frequency for conducting a full-scale business continuity exercise? → At least annually, with additional exercises following significant changes or incidents
- Which phase of incident response focuses on returning business operations to normal while preserving evidence for investigation? → Recovery phase
- How does risk appetite influence management decisions? → It defines the level of risk an organization is willing to accept in pursuit of objectives
- How should strategy implementation be monitored? → Through key performance indicators aligned with strategic objectives
- A BCP component that documents the alternate procedures for performing critical business functions manually or with limited technology is called: → A workaround procedure or manual fallback procedure
- A Crisis Communications Plan (CCP) should identify a primary spokesperson AND what additional element? → Backup spokespeople in case the primary is unavailable
- Which document in a comprehensive BCM program typically provides the highest-level framework, defining scope, policy, and governance? → The Business Continuity Management Policy
- Which entity typically has authority to establish practice standards? → State licensing boards and professional regulatory bodies
- Which international standard specifically addresses information security management and has direct relevance to IT disaster recovery planning? → ISO 27001
- When should a risk register be updated? → Continuously as new risks emerge and existing risks change
- What is 'concentration risk' in the context of supply chain continuity? → Over-reliance on a single vendor or geographic region for critical supplies
- When a business continuity plan includes coordination with the local emergency operations center (EOC), the organization should ensure that: → Contact information and liaison roles are pre-established and regularly updated
- How often should a practitioner review applicable regulations and standards? → Regularly, as regulations are updated frequently and compliance is ongoing
- What is the MOST important document produced after a business continuity exercise? → The corrective action plan assigning specific improvements to owners with deadlines
- Which element of a Business Impact Analysis determines which business functions are 'mission critical'? → The assessment of impact over time if the function is unavailable
- Which of the following scenarios represents a violation of the principle of 'regulatory horizon scanning' in business continuity? → Updating the compliance matrix only after a regulatory audit finds gaps
- What is the significance of professional networking in the Disaster Recovery Institute International field? → It facilitates knowledge exchange, referrals, and collaborative problem-solving
- What does ISO 22301 Clause 6 'Planning' require organizations to establish? → Objectives and plans for achieving them, plus actions to address risks and opportunities
Turn these facts into recall: