| ๐ผ A1.1 The entity maintains, monitors, and evaluates current processing capacity and use of system components to manage capacity demand and to enable the implementation of additional capacity to help meet its objectives. | 3 | | | |
| ย ย ย ย ๐ผ A1.1-1 Measures Current Usage | | | | |
| ย ย ย ย ๐ผ A1.1-2 Forecasts Capacity | | | | |
| ย ย ย ย ๐ผ A1.1-3 Makes Changes Based on Forecasts | | | | |
| ๐ผ A1.2 The entity authorizes, designs, develops or acquires, implements, operates, approves, maintains, and monitors environmental protections, software, data backup processes, and recovery infrastructure to meet its objectives. | 10 | | | |
| ย ย ย ย ๐ผ A1.2-1 Identifies Environmental Threats | | | | |
| ย ย ย ย ๐ผ A1.2-2 Designs Detection Measures | | | | |
| ย ย ย ย ๐ผ A1.2-3 Implements and Maintains Environmental Protection Mechanisms | | | | |
| ย ย ย ย ๐ผ A1.2-4 Implements Alerts to Analyze Anomalies | | | | |
| ย ย ย ย ๐ผ A1.2-5 Responds to Environmental Threat Events | | | | |
| ย ย ย ย ๐ผ A1.2-6 Communicates and Reviews Detected Environmental Threat Events | | | | |
| ย ย ย ย ๐ผ A1.2-7 Determines Data Requiring Backup | | | | |
| ย ย ย ย ๐ผ A1.2-8 Performs Data Backup | | | | |
| ย ย ย ย ๐ผ A1.2-9 Addresses Offsite Storage | | | | |
| ย ย ย ย ๐ผ A1.2-10 Implements Alternate Processing Infrastructure | | | | |
| ๐ผ A1.3 The entity tests recovery plan procedures supporting system recovery\ \ to meet its objectives. | 2 | | | |
| ย ย ย ย ๐ผ A1.3-1 Implements Business Continuity Plan Testing | | | | |
| ย ย ย ย ๐ผ A1.3-2 Tests Integrity and Completeness of Back-Up Data | | | | |