200+ Free CBCI Practice Questions

Pass your Certificate of the Business Continuity Institute (CBCI) exam on the first try — instant access, no signup required.

✓ No registration✓ No credit card✓ No hidden fees✓ Start practicing immediately

Not published Pass Rate

200+ Questions

100% Free

1 / 200

Question 1

Score: 0/0

When defining the scope of a BCMS, what should be stated first?

Which products, services, activities, sites, and entities are covered by the BCMS

The exact dates of every future exercise for the year

The full list of recovery vendors that might be used

The step-by-step actions each team will take during an incident

to track

2026 Statistics

Key Facts: CBCI Exam

Official Exam Questions

BCI CBCI page

63/90

Passing Score

BCI CBCI page

77/90

Merit Threshold

BCI CBCI page

90 min

Time Limit

BCI CBCI page

Equally Marked Units

BCI qualification specification

£1,280-£1,970

Current Official Routes

BCI shop pages reviewed March 12, 2026

As of March 12, 2026, the official CBCI exam remains a 90-question, 90-minute online multiple-choice assessment aligned to GPG 7.0. BCI states that 63 correct answers are required to pass and 77 correct answers earn a Merit, with all six units equally marked. Current official purchase routes reviewed for this update are the £1,280 self-study bundle and the £1,970 online-course bundle.

Sample CBCI Practice Questions

Try these sample questions to test your CBCI exam readiness. Each question includes a detailed explanation. Start the interactive quiz above for the full 200+ question experience with AI tutoring.

1When defining the scope of a BCMS, what should be stated first?

A.Which products, services, activities, sites, and entities are covered by the BCMS

B.The exact dates of every future exercise for the year

C.The full list of recovery vendors that might be used

D.The step-by-step actions each team will take during an incident

Explanation: A BCMS scope statement defines the boundaries and applicability of the management system. It should first make clear which parts of the organization and which outputs are in scope so later analysis and planning are anchored correctly. Exercise schedules, vendor lists, and detailed procedures belong in other artifacts.

2Who should approve the organization's BCM policy?

A.Top management

B.Any department manager with an operational role

C.The external auditor

D.The exercise facilitator

Explanation: BCM policy sets direction, intent, and expectations for the organization, so it requires top management approval. That approval demonstrates leadership commitment and gives the policy authority across the enterprise. Auditors and facilitators may review or support the programme, but they do not own policy approval.

3What is the primary role of a BC sponsor or steering group within the BCMS?

A.Provide direction, remove blockers, and ensure resources and priorities stay aligned

B.Write every business continuity plan personally

C.Take over all incident command responsibilities during disruptions

D.Perform the organization's internal audit of BCM controls

Explanation: A sponsor or steering group provides governance, strategic direction, and support for the BCM programme. It helps resolve issues, secures resources, and keeps decisions aligned with organizational priorities. Plan writing, incident command, and audit are distinct responsibilities.

4A BCM programme plan should sequence work primarily according to what?

A.Business priorities, dependencies, and the maturity of current capabilities

B.Alphabetical order of departments

C.The departments with the largest headcount

D.The renewal dates of office software licenses

Explanation: A BCM programme plan should be staged around what matters most to the organization and what must happen first. Dependencies, criticality, and existing maturity determine the order that gives the greatest value and least delivery risk. Alphabetical order, headcount alone, or unrelated administrative dates are weak planning drivers.

5How should regulatory and contractual continuity requirements be used in a BCMS?

A.Translate them into BCMS requirements and controls that fit the organization's context

B.Treat them as a complete substitute for business impact analysis

C.Apply them only after a major disruption has happened

D.Delegate them entirely to a key outsourced provider

Explanation: External requirements are inputs into the BCMS, not a separate parallel system. They should be interpreted, mapped into policy, scope, controls, and assurance activities, and then managed within the organization's governance. They do not replace analysis, and accountability cannot simply be handed to a supplier.

6Which governance artifact best demonstrates ongoing BCMS oversight by management?

A.Management review records showing decisions, actions, owners, and follow-up

B.A one-time launch email announcing the programme

C.An office floor plan for the recovery site

D.A raw attendance sheet from a single awareness session

Explanation: Ongoing oversight is evidenced by a structured review cycle that considers performance, issues, changes, and decisions. Management review outputs with actions and accountability show the BCMS is being directed and adjusted, not just announced. The other artifacts may be useful locally but do not show sustained governance.

7If a shared service supports both in-scope and out-of-scope products, how should it usually be treated in the BCMS?

A.Treat it as a dependency and include the relevant interfaces and controls needed for in-scope activities

B.Exclude it entirely because not every service user is in scope

C.Expand the BCMS immediately so every organizational activity becomes in scope

D.Ignore it until an external audit specifically asks about it

Explanation: Scope should be practical, but dependencies that affect in-scope products and services still need to be addressed. The BCMS should capture the shared service to the extent necessary to understand requirements, controls, and recovery assumptions for in-scope activities. Excluding it entirely or waiting for audit would leave a material gap.

8When BCM activities are supported by an external consultant, accountability for the BCMS remains with whom?

A.The organization's management

B.The consultant delivering the BCM project

C.The insurer covering operational losses

D.The regulator for the sector

Explanation: Consultants can provide expertise and delivery support, but they do not assume organizational accountability for continuity capability. Management remains responsible for policy, decisions, resources, and risk acceptance. Insurance and regulators have separate roles and cannot own the BCMS for the organization.

9What is the main purpose of a formal BCMS management review?

A.Decide whether the BCMS remains suitable, adequate, and effective, and what changes are required

B.Approve every emergency contact list line by line

C.Rerun all completed exercises from the prior year

D.Replace the organization's risk assessment process

Explanation: Management review is a governance activity that tests whether the BCMS is still fit for purpose and whether corrective or strategic changes are needed. It looks at performance, findings, risks, changes, and actions rather than redoing all operational work. Contact list maintenance, exercises, and risk assessment remain separate processes.

10Why should BCM stakeholders be mapped early in the programme?

A.So expectations, inputs, approvals, and communications can be tailored to the right audiences

B.So BIA interviews can be skipped entirely

C.So executive sponsorship becomes less important

D.So the budget is guaranteed before analysis begins

Explanation: Stakeholder mapping helps identify who needs to be informed, consulted, trained, or involved in decisions. That allows the programme to target messages and engagement effort where they will matter most. It does not remove the need for analysis, sponsorship, or sound business cases.

About the CBCI Exam

CBCI is BCI's Level 4 qualification in business continuity management. The exam is aligned to Good Practice Guidelines (GPG) 7.0 and tests candidates across six equally weighted professional practices: establishing the BCMS, embracing business continuity, analysis, solution design, enabling solutions, and validation.

Assessment

Single online exam with 90 multiple-choice questions; all six professional-practice units are equally marked.

Time Limit

90 minutes

Passing Score

63/90 correct answers (70%)

Exam Fee

£1,280 self-study bundle or £1,970 online course bundle (The Business Continuity Institute (BCI))

CBCI Exam Content Outline

≈16.7%

Establishing the BCMS

BCMS scope, policy, governance, leadership commitment, programme ownership, and alignment to standards and regulatory drivers.

≈16.7%

Embracing Business Continuity

Stakeholder engagement, culture, awareness, communications, competence, and embedding business continuity into daily operations.

≈16.7%

Analysis

Context review, business impact analysis, recovery requirements, dependencies, and risk assessment.

≈16.7%

Solution Design

Continuity strategies for people, workplaces, technology, data, suppliers, and command-and-control arrangements.

≈16.7%

Enabling Solutions

Plan structure, invocation, incident response, crisis communications, implementation readiness, and documented procedures.

≈16.7%

Validation

Exercises, tests, reviews, audits, metrics, assurance, lessons learned, and continual improvement.

How to Pass the CBCI Exam

What You Need to Know

Passing score: 63/90 correct answers (70%)
Assessment: Single online exam with 90 multiple-choice questions; all six professional-practice units are equally marked.
Time limit: 90 minutes
Exam fee: £1,280 self-study bundle or £1,970 online course bundle

Keys to Passing

Complete 500+ practice questions
Score 80%+ consistently before scheduling
Focus on highest-weighted sections
Use our AI tutor for tough concepts

CBCI Study Tips from Top Performers

1Study the six professional practices as one end-to-end management system rather than six isolated chapters.

2Be fluent in BIA outputs such as prioritized activities, recovery time requirements, dependencies, and resource assumptions because those decisions drive later strategy and planning questions.

3When a scenario asks for the best action, choose the answer that is proportionate, evidence-based, and aligned to governance rather than the most dramatic response.

4Differentiate policy, strategy, plan, procedure, and exercise result. CBCI frequently tests whether you know which document or activity belongs at each level.

5Practice timed sets. Ninety questions in ninety minutes leaves little room for overthinking long scenario items.

6Use missed questions to trace the lifecycle: establish, embed, analyze, design, enable, validate, then improve.

Frequently Asked Questions

How many questions are on the CBCI exam and how long do you get?

BCI states that the CBCI exam has 90 multiple-choice questions and a 90-minute time limit. The exam is delivered online and all six units are equally marked, so pacing matters just as much as content coverage.

What score do you need to pass CBCI?

BCI's current CBCI page states that you need 63 correct answers out of 90 to pass. The same page also states that 77 or more correct answers earns a Merit.

What are the official CBCI domains and weightings?

The qualification specification lists six professional-practice units: Establishing the BCMS, Embracing Business Continuity, Analysis, Solution Design, Enabling Solutions, and Validation. BCI states that all six units are equally marked, so each carries about one-sixth of the exam.

Are there formal prerequisites for the CBCI exam?

BCI's qualification specification says there are no formal entry requirements. In practice, most candidates study the Good Practice Guidelines (GPG) 7.0 carefully first, because the exam is built around that framework and expects applied business-continuity judgment.

How much does CBCI cost in 2026?

On the official BCI shop pages reviewed on March 12, 2026, the self-study bundle including the CBCI exam is listed at £1,280 and the online course plus exam bundle is listed at £1,970. BCI's current purchase flow packages the exam with training rather than showing a separate public standalone exam fee on the pages reviewed.

Did the CBCI exam change in 2026?

I did not find an official BCI announcement showing a 2026 CBCI blueprint or pass-mark change. The main current changes relevant to candidates are external resilience and regulatory developments that can influence examples and terminology, such as the EU's Digital Operational Resilience Act already being in force from January 17, 2025, the NIS2 Directive transposition deadline of October 17, 2024, and the UK financial-services operational-resilience deadline that passed on March 31, 2025.