====== Cyber Security - Cyber Recovery Strategy ======

<WRAP alert>
**IMPORTANT**:  Disaster Recovery is not the same as Cybersecurity Recovery

  * It is a common misconception that disaster recovery and cybersecurity recovery are one and the same.
  * Although they are similar and have some overlap, disaster recovery’s primary objective is to provide business continuity after disruption from man-made or natural causes.
  * Security recovery, on the other hand, protects data assets after a data breach.

</WRAP>

----

^ ^Disaster Recovery Plan^Security Recovery Plan^
|Primary Objective|Provide business continuity after disruption from man-made or natural causes.|Protect data assets after a data breach.|
|Response Requirements|Open communication with stakeholders, focus on rapid data recovery.|A stealthy approach that includes evidence collection and preservation, and route cause analysis.|
|Tactical Differences|Rapid, accurate data recovery.|Protective controls focused on preventing future loss.|
|Plan Management|Dedicated team that focuses on best practices and lessons learned from disaster recovery experiences.|Dedicated team that keeps up to date on new cyber security threats and modifies the plan accordingly.|

----