IBM Cloud Docs
CP-6 (1) - Separation from Primary Site

CP-6 (1) - Separation from Primary Site

Control requirements

CP-6 (1) - 0

Identify an alternate storage site that is sufficiently separated from the primary storage site to reduce susceptibility to the same threats.

NIST supplemental guidance

Threats that affect alternate storage sites are defined in organizational risk assessments and include natural disasters, structural failures, hostile attacks, and errors of omission or commission. Organizations determine what is considered a sufficient degree of separation between primary and alternate storage sites based on the types of threats that are of concern. For threats such as hostile attacks, the degree of separation between sites is less relevant.