New Mexico Administrative Code
Title 1 - GENERAL GOVERNMENT ADMINISTRATION
Chapter 12 - INFORMATION TECHNOLOGY
Part 20 - INFORMATION SECURITY OPERATION MANAGEMENT
Section 1.12.20.31 - BUSINESS CONTINUITY
Current through Register Vol. 35, No. 18, September 24, 2024
This section is limited to the IT infrastructure and the data and applications of the local agency environment.
A. A threat and risk assessment shall be performed by the agency to determine the criticality of business systems and the time frame required for recovery in the event of disaster.
B. To minimize interruptions to normal agency business operations and critical agency business applications and to ensure they are protected from the effects of any major failures, each agency business unit or each agency ISO, under the direct guidance of the agency CIO, shall develop plans to meet the IT backup and recovery requirements of the agency and approved by DoIT.
C. Back-ups of critical agency data and software shall be performed daily.