Document the uninterrupted power requirements for all in scope systems.
CONTROL ID 06707
CONTROL TYPE Establish/Maintain Documentation
CLASSIFICATION Preventive
SUPPORTING AND SUPPORTED CONTROLS
This Control directly supports the implied Control(s):
Establish, implement, and maintain a continuity plan., CC ID: 00752
This Control has the following implementation support Control(s):
Install an Uninterruptible Power Supply sized to support all critical systems., CC ID: 00725
Install a generator sized to support the facility., CC ID: 06709
SELECTED AUTHORITY DOCUMENTS COMPLIED WITH
It is necessary to confirm the facilities, equipment, computer systems, etc. that can be used when the private power generation facility, etc. is activated in an emergency. Also, it is necessary to check the amount of electricity required by them at the time of addition, renewal, etc. of each device… (F64.4., FISC Security Guidelines on Computer Systems for Financial Institutions, Ninth Edition, Revised March 2020)
The supply services are monitored. If the tolerable control range is exceeded from below or above, alarm messages are generated and forwarded to the responsible bodies. The cloud provider determines and communicates the times of self-sufficient supply which are achieved by the safeguards taken if th… (Section 5.5 PS-04 Description of additional requirements (availability) ΒΆ 1, Cloud Computing Compliance Controls Catalogue (C5))
Appropriate power configurations based on the entity's power needs. (App A Objective 13:9d Bullet 3, FFIEC Information Technology Examination Handbook - Architecture, Infrastructure, and Operations, June 2021)
Has management ensured critical systems are connected to a backup power source? (IT - Business Continuity Q 18, Automated Integrated Regulatory Examination System (AIRES) IT Exam Questionnaires, version 073106A)
