PR.DS-11—Backups of data are created, protected, maintained, and tested
>Control Description
This data security subcategory ensures that backups of data are created, protected, maintained, and tested. Key activities include: Continuously back up critical data in near-real-time, and back up other data frequently at agreed-upon schedules; Test backups and restores for all types of data sources at least annually; Securely store some backups offline and offsite so that an incident or disaster will not damage them.
>Cross-Framework Mappings
NIST SP 800-53 r5
via NIST CSF 2.0 Concept CrosswalkPCI DSS v4.0.1
via NIST OLIR CatalogISO 27001:2022
via NIST OLIR Catalog>Informative References
Official NIST mappings to external frameworks and standards. Source: NIST CSF 2.0
CCMv4.0
BCR-08
CEK-18
DSP-16
DSP-19
LOG-02
LOG-09
CIS Controls v8.0
11.2
11.3
11.5
CIS Controls v8.1
11.2
11.3
11.5
CRI Profile v2.0
PR.DS-11
PR.DS-11.01
CSF v1.1
PR.IP-4
ISO/IEC 27001:2022
Mandatory Clause: None
Annex A Controls: 8.13
NICE Framework
DD-WRL-007
IO-WRL-002
IO-WRL-005
IO-WRL-006
PD-WRL-001
PCI DSS
12.10.1
9.4.7
9.3.1.1
9.4.1.1
9.4.1.2
SCF
BCD-11
BCD-11.1
BCD-11.5
BCD-11.6
SP 800-171 Rev 3
03.08.09
SP 800-218
PS.3.1
SP 800-53 Rev 5.1.1
CP-06
CP-09
SP 800-53 Rev 5.2.0
CP-06
CP-09
Ask AI
Configure your API key to use AI features.