RECOVER
RECOVER
Recover – provides appropriate activities to keep up plans for resilience and to restore any capabilities or services that were impaired due to a cybersecurity event. Recover function supports timely recovery to normal operations to reduce the impact from a cybersecurity event.
Recover categories include:
‣ Recovery Planning – organization ensures Recovery processes and procedures to restore systems and/or assets affected by cybersecurity incidents
‣ Improvements – recovery planning and processes are improved by incorporating lessons learned, updated and improved based on lessons learned and reviews of existing strategies
‣ Communications – restoration activities are coordinated with internal and external stakeholders during and following the recovery from a cybersecurity event.
