:star: G10 Data Recovery Capability (:checkered_flag: G10-3 Ensure that…
:star: G10 Data Recovery Capability
Ensure that each system is automatically backed up
on at least a weekly basis
and more often for systems storing sensitive information.
To help ensure the ability
to rapidly restore a system from backup
the operating system
and data on a machine
should each be included in the overall backup proocedure.
These three components of a system
do not have to be included in the same back up file
or use the same backup software.
There should be multiple backups over time
so that in the event of malware infection
restoration can be from a version
that is believed to predate the original infection.
All backup policies should be compliant
with any regulatory or official requirements.
Test data on backup media
on a regular basis
by performing a data restoration process
to ensure that the backup is properly working.
Ensure that backups are properly protected
via physical security or encryption
when they are stored,
as well as when they are moved across the network.
and cloud services.
Ensure that key systems
have at least one backup destination
that is not continuously addressable
through operating system calls.
This will mitigate the risk of attacks
which seek to encrypt or damage data
on all addressable data shares
including backup destinations.