Systems should be restored within one day and should remain operational for at least four hours.

Systems should be restored within four hours and no later than one day after the incident.

Systems should be restored within one day and lose, at most, four hours' worth of data.

Systems should be restored within four hours with a loss of one day's worth of data at most.

Regulations require financial transactions to be stored for seven years.

Employees must remove and lock up all sensitive and confidential documents when not in use.

It describe a formal process of managing configuration changes made to a network.

It is a legal document that describes a mutual agreement between parties.

Health information

Personally identifiable information (PII)

Financial information

Intellectual property

Owner

Custodian

Privacy officer

System administrator

Escalated the investigation

Public notification

Outsourced the investigation

Tokenized the data

Acceptable use policy

Social media policy

Password policy

Parking policy

FISMA

COPPA

PCI-DSS

GDPR