This policy is intended to protect your organization’s digital infra-structure in the event of a disaster. It should specify procedures you’ll follow to protect and recover from a natural disaster, malicious attack or other type of outage.
A determination has been made of how long a digital infrastructure outage can be tolerated by the organization—an hour? A day?
A documented policy has been developed to address what preventative and reactive steps the organization will take if a disaster should take place—and how it will recover.