RC.RP-1

Recovery plan is executed during or after a cybersecurity incident

Recover · Recovery Planning

Manual Attestation

Compliance Score

10%

Non-Compliant

Documentation Maturity

1/ 5

Target: 2.5

Implementation Maturity

1/ 5

Target: 2.5

Control Description

A recovery plan exists that defines how to restore systems and data after a cybersecurity incident. The plan includes priorities, procedures, and communication requirements.

Findings (1)

0/1 items compliant

Severity	Finding	Recommendation
high	Improvement needed: Recovery plan is executed during or after a cybersecurity incident Current implementation does not fully meet the requirements of RC.RP-1.	Develop a disaster recovery plan with RTOs and RPOs for critical systems. Document recovery procedures for different scenarios (ransomware, data breach, system failure). Test recovery procedures at least annually. Maintain offline recovery documentation.

Severity

Finding

high

Improvement needed: Recovery plan is executed during or after a cybersecurity incident

Current implementation does not fully meet the requirements of RC.RP-1.

Remediation Guidance

Develop a disaster recovery plan with RTOs and RPOs for critical systems. Document recovery procedures for different scenarios (ransomware, data breach, system failure). Test recovery procedures at least annually. Maintain offline recovery documentation.