Continuity plans are developed to sustain and restore operation of the function if a cybersecurity event or incident occurs, at least in an ad hoc manner
Context and Guidance: Continuity plans contain descriptions of the actions the organisation will take to sustain and restore operation of the function if a disruption occurs (such as failing over to redundant facilities or initiating manual procedures) and key roles that must be involved. They are generally focused on managing the organisational consequences of disruption based on a range of potential events that can cause disruption. Continuity plans address the most critical business functions of the organisation to ensure they continue during different types of emergencies. Organisations may also consider how secure shutdown will be performed as part of continuity planning.
Related Practices • Input From: Implementing ARCHITECTURE-2j provides input that may be useful for implementing this practice. • Progression: This practice is part of a practice progression. Practice progressions are groups of related practices that represent increasingly complete or more advanced implementations of an activity. The practices in this progression include: RESPONSE-4a, RESPONSE-4d, RESPONSE-4e, RESPONSE-4f, RESPONSE-4g, RESPONSE-4m, RESPONSE-4p.