CC7.5SOC 2System operations - incident recovery
The entity identifies, develops, and implements activities to recover from identified security incidents.
- Trust Service Criterion
- CC
- Audit period
- type-2
- Points of focus
- Recovery steps are documented
- Lessons learned feed control improvements
- Incident closure includes remediation validation