>myctrl.tools
Preferences
Under active development Content is continuously updated and improved · Last updated Feb 18, 2026, 2:55 AM UTC
Compare

RC.RP-06The end of incident recovery is declared based on criteria, and incident-related documentation is completed

>Control Description

This incident recovery plan execution subcategory ensures that the end of incident recovery is declared based on criteria, and incident-related documentation is completed. Key activities include: Prepare an after-action report that documents the incident itself, the response and recovery actions taken, and lessons learned; Declare the end of incident recovery once the criteria are met.

>Cross-Framework Mappings

NIST SP 800-53 r5

via NIST CSF 2.0 Concept Crosswalk
IR-04
Compare
IR-08
Compare

PCI DSS v4.0.1

via NIST OLIR Catalog
10.5.1
Compare
12.10.2
Compare
12.10.6
Compare

ISO 27001:2022

via NIST OLIR Catalog
5.27
Compare
8.13
Compare

SCF

IRO-02
Compare
IRO-09
Compare

>Informative References

Official NIST mappings to external frameworks and standards. Source: NIST CSF 2.0

CRI Profile v2.0

RC.RP-06
RC.RP-06.01

ISO/IEC 27001:2022

Mandatory Clause: None
Annex A Controls: 5.27
Annex A Controls: 8.13

NICE Framework

DD-WRL-002
IO-WRL-005
OG-WRL-007
OG-WRL-010
OG-WRL-014
OG-WRL-015
PD-WRL-003

PCI DSS

12.10.6
12.10.2
10.5.1

SCF

IRO-02
IRO-09

SP 800-171 Rev 3

03.06.01
03.06.05

SP 800-53 Rev 5.1.1

IR-04
IR-08

SP 800-53 Rev 5.2.0

IR-04
IR-08

Ask AI

Configure your API key to use AI features.