Navigate

CCI-000551

CCI-000551 Definition

The organization provides for the recovery and reconstitution of the information system to a known state after a compromise.

Status
Type	CheckType.policy

Master Assessment Datasheet

Implementation Guidance

The organization being inspected/assessed provides automated mechanisms or manual procedures, or a combination of the two, for the recovery and reconstitution of its information system to a known state after a compromise. The organization must identify the selected method in the contingency plan.

Validation Procedures

The organization conducting the inspection/assessment obtains and examines the contingency plan to ensure it identifies the recovery and reconstitution method for its information system to a known state after a compromise.

Compelling Evidence

1.) Signed and dated contingency plan, referencing section which identifies automated mechanisms or manual procedures for the recovery and reconstitution of its information system to a known state after a compromise

Related Controls

The controls below (if any) were marked by NIST as being related to CCI-000551.

Control	Description
CP-10	The organization provides for the recovery and reconstitution of the information system to a known state after a disruption, compromise, or failure.