SecProve
Pillar A: CybersecurityA23

Recovery, Resilience & Cyber Recovery

Backup integrity, immutable snapshots, cyber-recovery vaults, restore orchestration, BCM/DR, tabletop exercises, ransom-scenario restoration drills.

Practice A23 (40 questions)
Part of Pillar A: Cybersecurity · Cybersecurity groups the disciplines that share methods, tools, and threat models with Recovery, Resilience & Cyber Recovery.
Layer 4

Detect, Test & Respond

Watch, hunt, attack ethically, analyse, and respond — classical and AI.

Other domains in this layer

A7Incident Response & ForensicsA8Threat IntelligenceA9Penetration Testing & Red TeamingA10Security OperationsA11Detection Engineering & Threat HuntingA19Cyber Deception & Active DefenseA21Malware Analysis & Reverse EngineeringC5AI Red TeamingA24Exposure Management & Attack Surface
See how this layer connects to the rest of the domain map →

Curated resources

Authoritative sources we ground Recovery, Resilience & Cyber Recovery questions in — frameworks, research, guides, and tools.

NISTframework

NIST SP 800-160 Vol. 2 Rev. 1 — Developing Cyber-Resilient Systems

Cyber-resiliency engineering framework. Covers deception, diversity, dynamic positioning, and other techniques for systems designed to operate through compromise. The systems-engineering view of active defense.

NISTframework

NIST SP 800-184 — Guide for Cybersecurity Event Recovery

The federal recovery playbook. Covers recovery planning, validation of restored services, post-event improvement. Pairs with NIST CSF Recover function.

NISTframework

NIST SP 800-34 Rev. 1 — Contingency Planning Guide for Federal Information Systems

Comprehensive contingency planning: BIA, recovery strategies, plan testing, training, and maintenance. The reference for RTO/RPO and recovery tier questions.

ISOframework

ISO 22301 — Business Continuity Management Systems

International standard for business continuity management systems. Defines requirements for establishing, implementing, and maintaining a BCMS. Often paired with ISO 27001 for combined audits.

CISAframework

CISA #StopRansomware

Federal hub for ransomware prevention, mitigation, and recovery guidance. Joint advisories with FBI/MS-ISAC, no-cost CISA services, and the ransomware-specific recovery checklist.

CISAframework

CISA Cyber Resilience Review (CRR)

No-cost CISA assessment of operational resilience and cybersecurity practices for critical infrastructure operators. Maps to NIST CSF for gap analysis.

View all resources for A23

Certifications that signal this domain

Credentials whose blueprint meaningfully covers this domain. Core means centrally covered; also touched means present in the blueprint but not the primary focus.

Core coverage

AWS SAPProfessional·AWSOfficial page →

Amazon Web Services Certified Solutions Architect - Professional

Amazon Web Services Certified Solutions Architect - Professional

CCSPProfessional·ISC2Official page →

Certified Cloud Security Professional

Cloud security architecture: shared responsibility, identity, data protection, crypto, and cloud-native detection.

EDRPProfessional·EC-CouncilOfficial page →

EC Council Disaster Recovery Professional

EC Council Disaster Recovery Professional

Also touched

AWS Security SpecialtyProfessional·Amazon Web ServicesOfficial page →

AWS Certified Security — Specialty (SCS-C02)

Deep AWS security: IAM, data protection, detection, incident response within AWS primitives.

Browse all certifications → — pick a cert on the interactive map to highlight every domain it covers.

More in Cybersecurity

A1

Governance, Risk & Compliance

A2

Network Security

A3

Zero Trust Architecture

A4

Application Security

A5

Cloud Security

A6

Identity & Access Management

Test what you know about Recovery, Resilience & Cyber Recovery

40 questions available. Beginner to expert questions, scored against the global leaderboard.

Start a QuizSign Up Free