>myctrl.tools
Preferences
Under active development Content is continuously updated and improved
Compare

RC.CO-03Recovery activities and progress in restoring operational capabilities are communicated to designated internal and external stakeholders

>Control Description

This incident recovery communication subcategory ensures that recovery activities and progress in restoring operational capabilities are communicated to designated internal and external stakeholders. Key activities include: Securely share recovery information, including restoration progress, consistent with response plans and information sharing agreements; Regularly update senior leadership on recovery status and restoration progress for major incidents; Follow the rules and protocols defined in contracts for incident information sharing between the organization and its suppliers.

>Cross-Framework Mappings

NIST SP 800-53 r5

via NIST CSF 2.0 Concept Crosswalk
IR-04
Compare
IR-06
Compare
SR-08
Compare

PCI DSS v4.0.1

via NIST OLIR Catalog
12.10.1
Compare
12.10.3
Compare
12.8.2
Compare
12.8.4
Compare

ISO 27001:2022

via NIST OLIR Catalog
5.28
Compare

SCF

BCD-01.6
Compare

>Informative References

Official NIST mappings to external frameworks and standards. Source: NIST CSF 2.0

CRI Profile v2.0

RC.CO-03
RC.CO-03.01
RC.CO-03.02

CSF v1.1

RC.CO-3

ISO/IEC 27001:2022

Mandatory Clause: 7.4
Annex A Controls: 5.28

NICE Framework

IO-WRL-005
OG-WRL-006
OG-WRL-007
OG-WRL-008
OG-WRL-010
OG-WRL-011
OG-WRL-015
PD-WRL-003

PCI DSS

12.10.1
12.10.3
12.8.2
12.8.4

SP 800-171 Rev 3

03.06.01
03.06.02

SP 800-221A

GV.CO-1

SP 800-53 Rev 5.1.1

IR-04
IR-06
SR-08

SP 800-53 Rev 5.2.0

IR-04
IR-06
SR-08

Ask AI

Configure your API key to use AI features.