RC.RP-02
Recovery actions are selected, scoped, prioritized, and performed
Implementation examples
- Ex1: Select recovery actions based on the criteria defined in the incident response plan and available resources
- Ex2: Change planned recovery actions based on a reassessment of organizational needs and resources
Mapped NIST 800-53 r5 controls (3)
All informative references (37)
- AI-SOC: AI-SOC-25
- AI-SOC: AI-SOC-06
- CCMv4.0: SEF-06
- CRI Profile v2.0: RC.RP-02
- CRI Profile v2.0: RC.RP-02.01
- CRI Profile v2.0: RC.RP-02.02
- CSF v1.1: RC.RP-1
- Guardian-SDK: GS-PO-02
- ISO/IEC 27001:2022: Mandatory Clause: None
- ISO/IEC 27001:2022: Annex A Controls: 5.26
- NICE Framework: DD-WRL-002
- NICE Framework: IO-WRL-005
- NICE Framework: OG-WRL-014
- NICE Framework: OG-WRL-015
- NICE Framework: PD-WRL-003
- NICE Framework: PD-WRL-004
- OWASP Top 10 LLM Applications: LLM04-2025
- OWASP Top 10 LLM Applications: LLM10-2025
- PCI DSS: 12.10.1
- PCI DSS: 12.10.2
- PCI DSS: 12.10.6
- PCI DSS: 1.2.3
- PCI DSS: 1.2.4
- SCF: BCD-01
- SCF: BCD-01.4
- SCF: BCD-02
- SCF: BCD-02.1
- SDOS: SDOS-AU-01
- SDOS: SDOS-RM-01
- SP 800-171 Rev 3: 03.06.01
- SP 800-171 Rev 3: 03.06.05
- SP 800-53 Rev 5.1.1: CP-10
- SP 800-53 Rev 5.1.1: IR-04
- SP 800-53 Rev 5.1.1: IR-08
- SP 800-53 Rev 5.2.0: CP-10
- SP 800-53 Rev 5.2.0: IR-04
- SP 800-53 Rev 5.2.0: IR-08
Source: NIST Cybersecurity Framework 2.0 · CSF 2.0 → 800-53 mappings sourced from NIST Cybersecurity & Privacy Reference Tool (CPRT) · US government work — attribution requested per NIST Open License Terms. Direct CSF→CWE/CVE cross-references will be added in a Phase B LLM-authored mapping pass (not yet rendered).