The combination of regular data backups and tested restoration procedures that protect against data loss from any cause.
Backup and restore is the practice of maintaining copies of firm data and verifying that those copies can be restored. The standard guidance is the 3-2-1 rule: three copies of data, on two different media types, with one copy offsite or offline. Modern best practice adds immutability (backups that cannot be altered or deleted, even by an attacker with admin credentials) and tested restore procedures. The FTC Safeguards Rule implicitly requires backups through its data protection and incident response provisions.
Backups you have never restored are theoretical. Most firms discover their backups are incomplete or unrestorable only during an actual incident. Ransomware specifically targets backup systems; without immutable or offline copies, recovery may be impossible without paying. A quarterly test restore from each backup destination is the practical control that turns a theoretical backup into a real one.
The 58-Control Register module handles this for your firm, personalized to your software, team size, and state requirements.
See plans and pricingA technical plan that restores systems and data after an incident such as ransomware, hardware failure, or cloud outage.
A documented plan for keeping the firm operating through disruptions such as outages, natural disasters, or extended staff absences.
A documented set of procedures your firm follows when a data breach or security incident occurs.
Buy the WISP yourself if you need the document.
Talk to us if you want the platform.
We use cookies to measure site performance and improve your experience. No data is sold to third parties. Privacy Policy