Home » Pillars » RC.CI: Continuous Improvements » RC.CI-1 Industry Best Practices

Description

Inform your recovery process, protocol, control and metric using industry best practices. Conduct continuous assurance testing, and ensure that controls are regularly tested. Update processes and playbook and runbooks, and carryout recovery TTX and exercises including cyber COOP and business continuity plans. It is important to note that recovery is not tool-specific, it is a process-driven capability practice. No single tool exists that can achieve cyber recovery for any organisation. Recovery is a collection of people, process and technology controls, capability and planning activities that will allow the organisation to react, predict and withstand swiftly in the face of a successful cyber incident or security breach.