These controls support our ability to recover to “normal” operations as rapidly as possible and with as minimal disruption as possible. Controls in this category focus on helping us understand the following:
The Recovery Planning section of our Information Security Program addresses the recovery processes and procedures that are executed and maintained to ensure restoration of systems or assets affected by information security incidents.
We use our documented recovery plan when responding to information security and privacy-related incidents when recovery is necessary.
The Improvements section of our Information Security Program addresses the recovery planning and processes that are improved by incorporating lessons learned into future activities.
We document lessons learned from recovery operations and incorporate that knowledge into future recovery plans.
We use lessons learned from recovery operations to update our response strategies.
The Communications section of our Information Security Program addresses the restoration activities that are coordinated with internal and external parties.
We implement mechanisms to manage public affairs activities associated with recovery operations.
We communicate recovery activities to applicable stakeholders.