NASA Procedural Requirements

NPR 2810.1F Effective Date: January 03, 2022 Expiration Date: January 03, 2027

Subject: Security of Information and Information Systems

Responsible Office: Office of the Chief Information Officer

Chapter 6. Recover Function

6.1 Recovery Planning

6.1.1 Overview

6.1.1.1 This section establishes requirements for processes and procedures to ensure recovery from an incident.

6.1.2 Incident Recovery Planning Policy

6.1.2.1 The SAISO shall develop and maintain a NASA-wide Incident Recovery Plan, which contains processes and procedures for incorporating lessons learned from incident response activities. The Incident Recovery Plan may be executed during or after information security incidents and may be included in the Incident Response Plan

6.2 Improvements

6.2.1 Overview

6.2.1.1 This section establishes requirements for the improvement of incident recovery efforts.

6.2.2 Incident Recovery Improvement Policy

6.2.2.1 The SAISO shall incorporate lessons learned from current or prior incidents in the Incident Recovery Plan required by section 6.1.2.1.

6.3 Communications

6.3.1 Overview

6.3.1.1 This section establishes requirements for communications to internal and external stakeholders regarding recovery from an Incident.

6.3.2 Incident Recovery Communications and Coordination Policy

6.3.2.1 The SAISO shall ensure the plan required by section 6.1.2.1 includes:

a. A public relations management strategy that works to restore trust in NASA’s mission capabilities.

b. Procedures for communications with internal and external stakeholders as well as executive and management teams.

DISTRIBUTION:
NODIS

This document does not bind the public, except as authorized by law or as incorporated into a contract. This document is uncontrolled when printed. Check the NASA Online Directives Information System (NODIS) Library to verify that this is the correct version before use: https://nodis3.gsfc.nasa.gov.