CP-4: Contingency Plan Testing

From NIST's SP800-53:

a. Test the contingency plan for the system [Assignment: organization-defined frequency] using the following tests to determine the effectiveness of the plan and the readiness to execute the plan: [Assignment: organization-defined tests]. b. Review the contingency plan test results; and c. Initiate corrective actions, if needed.

Cyber Threat Graph Context

Explore how this control relates to the wider threat graph

SP800-53 Control Mapped to NIST Cyber Security Framework

Generated from NISTs SP800-53/CSF Crosswalk mappings.

Control ID	Description
PR.IP-4	Backups of information are conducted, maintained, and tested
PR.IP-10	Response and recovery plans are tested
ID.SC-5	Response and recovery planning and testing are conducted with suppliers and third-party providers