CP-6: Alternate Storage Site
From NIST's SP800-53:
a. Establish an alternate storage site, including necessary agreements to permit the storage and retrieval of system backup information; and b. Ensure that the alternate storage site provides controls equivalent to that of the primary site.
Cyber Threat Graph Context
Explore how this control relates to the wider threat graph
SP800-53 Control Mapped to NIST Cyber Security Framework
Generated from NISTs SP800-53/CSF Crosswalk mappings.
| Control ID | Description |
|---|---|
| PR.IP-4 | Backups of information are conducted, maintained, and tested |
MITRE ATT&CK Techniques
See which MITRE ATT&CK techniques this control helps to protect against.
| ATT&CK ID | Title | Associated Tactics |
|---|---|---|
| T1565.001 | Stored Data Manipulation | Impact |
| T1070.008 | Clear Mailbox Data | Defense Evasion |
| T1070.001 | Clear Windows Event Logs | Defense Evasion |
| T1565 | Data Manipulation | Impact |
| T1070.002 | Clear Linux or Mac System Logs | Defense Evasion |
| T1119 | Automated Collection | Collection |
| T1486 | Data Encrypted for Impact | Impact |
| T1070 | Indicator Removal | Defense Evasion |