Contingency Response

  • Write Contingency Response Policy (NIST CP)

  • Write CP procedure

  • Review customer Risk Assessments, Business Impact Analysis, and Data Privacy Impact Analysis

  • Write CP plan

    • Includes critical assets as indicated by RA, BIA, and DPIA

    • Establishes RTO and RPO

  • Write CP testing procedures with testing frequency

  • Generate CP test plan based on frequency within service period

    • Customer executes test

  • Review test results

    • Draft lessons learned

    • Draft CP plan modifications based on test results