IMPORTANT: Disaster Recovery is not the same as Cybersecurity Recovery
Disaster Recovery Plan | Security Recovery Plan | |
---|---|---|
Primary Objective | Provide business continuity after disruption from man-made or natural causes. | Protect data assets after a data breach. |
Response Requirements | Open communication with stakeholders, focus on rapid data recovery. | A stealthy approach that includes evidence collection and preservation, and route cause analysis. |
Tactical Differences | Rapid, accurate data recovery. | Protective controls focused on preventing future loss. |
Plan Management | Dedicated team that focuses on best practices and lessons learned from disaster recovery experiences. | Dedicated team that keeps up to date on new cyber security threats and modifies the plan accordingly. |