These controls focus on restoring capabilities or services that were impaired during an incident.

These controls support our ability to recover to “normal” operations as rapidly as possible and with as minimal disruption as possible. Controls in this category focus on helping us understand the following:

  • Plans that are in place to recover systems and data; and
  • How recovery will be communicated to impacted or potentially impacted parties.