Home » Functions » Plan (RC.RP) » RC.RP-1 Recovery Plan

Description

Create a Cyber Continuity of Operations Plan (COOP). A Cyber COOP should cover cyber resilience and recovery readiness activities such as architect to protect, secure administration, access control, device hardening and backup strategies, and including surviving through the attack, and recovering to an acceptable level of service ^{[ 27, 28, 29]}

Recovery must be planned and regularly exercised to ensure that controls and capabilities are up to date and functional. Recovery plan should be executed during and after an event ^[21].

Outcomes / Outputs

(Conduct / Fix / Ingest / List / Plan / Procure / Produce / Report / Review / Set / Test  / Train )

1. Produce Cyber Continuity of Operations plan

Reference

21. NIST Cybersecurity Framework [2018], “Framework for Improving Critical Infrastructure Cybersecurity”, a.k.a. CSF, Version 1.1. April 16, 2018.

27. MITRE (2015), “Cyber Continuity of Operations Planning”, Case Number 15-3300, 2015. Retrieved Dec. 2019. http://www2.mitre.org/public/industry-perspective/documents/06-ar-cyber-coop-planning.pdf

28. MITRE (2015), “Cyber Resiliency: Key Concepts & Terms”, 2015. Retrieved Dec. 2019. http://www2.mitre.org/public/industry-perspective/documents/Key_Cyber_Resiliency_Terms_and_Concepts.pdf
29. MITRE (2016), “Cyber Resiliency Resource List”, 2016. Retrieved Dec. 2019. http://www2.mitre.org/public/sr/Cyber-Resiliency-Resources-16-1467.pdf