Contingency Planning (CP)
[Withdrawn: Incorporated into SI-13.]
Contingency Planning (CP)
Plan and prepare for circumstances that preclude returning to the primary processing site.
Contingency Planning (CP)
Level N/A
Establish alternate telecommunications services, including necessary agreements to permit the resumption of [Assignment: organization-defined system operations] for essential mission and business functions within [Assignment: organization-defined time period] when the primary telecommunications capabilities are unavailable at either the primary or alternate processing or storage sites.
Contingency Planning (CP)
(a) Develop primary and alternate telecommunications service agreements that contain priority-of-service provisions in accordance with availability requirements (including recovery time objectives); and (b) Request Telecommunications Service Priority for all telecommunications services used for national security emergency preparedness if the primary and/or alternate telecommunications services are provided by a common carrier.
Contingency Planning (CP)
Obtain alternate telecommunications services to reduce the likelihood of sharing a single point of failure with primary telecommunications services.
Contingency Planning (CP)
Obtain alternate telecommunications services from providers that are separated from primary service providers to reduce susceptibility to the same threats.
Contingency Planning (CP)
(a) Require primary and alternate telecommunications service providers to have contingency plans; (b) Review provider contingency plans to ensure that the plans meet organizational contingency requirements; and (c) Obtain evidence of contingency testing and training by providers [Assignment: organization-defined frequency].
Contingency Planning (CP)
Test alternate telecommunication services [Assignment: organization-defined frequency].
Contingency Planning (CP)
Level N/A
a. Conduct backups of user-level information contained in [Assignment: organization-defined system components] [Assignment: organization-defined frequency consistent with recovery time and recovery point objectives]; b. Conduct backups of system-level information contained in the system [Assignment: organization-defined frequency consistent with recovery time and recovery point objectives]; c. Conduct backups of system documentation, including security- and privacy-related documentation [Assignment: organization-defined frequency consistent with recovery time and recovery point objectives]; and d. Protect the confidentiality, integrity, and availability of backup information.
Contingency Planning (CP)
Test backup information [Assignment: organization-defined frequency] to verify media reliability and information integrity.
