CTPAT Members should have written procedures in place that address crisis management, business continuity, security recovery plans, and business resumption.
A crisis may include the disruption of the movement of trade data due to a cyber attack, a fire, or a carrier driver being hijacked by armed individuals. Based on risk and where the Member operates or sources from, contingency plans may include additional security notifications or support; and how to recover what was destroyed or stolen to return to normal operating conditions.
This is a SHOULD requirement for CTPAT.
This is a management item requiring policies and procedures that may affect IT staff.
Disaster recovery procedures are a good thing to have.