This function brings together the development and implementation of the activities necessary to restore the capabilities or services that were affected due to a cybersecurity event, and allows resilience plans to be maintained.
The objective is the timely recovery of normal operations to reduce the impact of a cybersecurity event, using all necessary techniques, processes and procedures.