CIS Control 10

CIS Control 10: Data Recovery Capabilities

The processes and tools used to properly back up critical information with a proven methodology for timely recovery of it.

10.1: Ensure Regular Automated Backups

  • Ensure that all system data is automatically backed up on a regular basis.

10.2: Perform Complete System Backups

  • Ensure that all of the organization’s key systems are backed up as a complete system, through processes such as imaging, to enable the quick recovery of an entire system.

10.3: Test Data on Backup Media

  • Test data integrity on backup media on a regular basis by performing a data restoration process to ensure that the backup is properly working.

10.4: Protect Backups

  • Ensure that backups are properly protected via physical security or encryption when they are stored, as well as when they are moved across the network. This includes remote backups and cloud services.

10.5: Ensure All Backups Have at Least One Offline Backup Destination

  • Ensure that all backups have at least one offline (i.e., not accessible via a network connection) backup destination.

Figure: System Entity Relationship Diagram

CIS Control 10

Contact Us

USA Offices

New Net Technologies LLC
Suite #10115, 9128 Strada Place
Naples, Florida, 34108

New Net Technologies LLC
1175 Peachtree St NE
Atlanta, Georgia, 30361.

Tel: (844) 898-8358
[email protected]


UK Office

New Net Technologies Ltd
Rivers Lodge, West Common
Harpenden, Hertfordshire

Tel: 01582 287310
 [email protected]

SC Magazine Cybersecurity 500 Infosec Security Winners 2018 CIS benchmarking SEWP Sans Institute Now Certified IBM Security
Copyright 2020, New Net Technologies LLC. All rights reserved. 
NNT and Change Tracker are registered trademarks of New Net Technologies LLC.
All other product, company names and trademarks are the property of their respective owners.