CP-7(1)

  • Requirement

    Identify an alternate processing site that is sufficiently separated from the primary processing site to reduce susceptibility to the same threats.

  • Discussion

    Threats that affect alternate processing sites are defined in organizational assessments of risk and include natural disasters, structural failures, hostile attacks, and errors of omission or commission. Organizations determine what is considered a sufficient degree of separation between primary and alternate processing sites based on the types of threats that are of concern. For threats such as hostile attacks, the degree of separation between sites is less relevant.

More Info

  • Title

    Alternate Processing Site | Separation from Primary Site
  • Family

    Contingency Planning
  • NIST 800-53B Baseline(s)

    • Moderate
    • High
  • Related NIST 800-53 ID

    RA-3

NIST 800-53A Assessment Guidance

CMMC Training

Our CMMC Overview Course simplifies CMMC. Enroll so you can make informed decisions!