Recover-function mapping
Every recovery test is tied to the CSF 2.0 Recover function, so your self-assessment has the evidence behind the claim.
Your DR plan covers the systems you own — not the software a vendor controls. Codekeeper verifies that your vendor's code rebuilds and runs, then lays out the evidence for examiners.
Format is the gap. An examiner reads NIST CSF 2.0 and the IT Handbook booklets. Evidence outside that framing is something they can't credit.
Every recovery test is tied to the CSF 2.0 Recover function, so your self-assessment has the evidence behind the claim.
Each record points to the Business Continuity Management and Information Security booklets that examiners work from.
The software is rebuilt from its deposit and confirmed to run, so you show recovery instead of asserting it.
You hand over a single pack that covers third-party software continuity, assembled before the exam reaches it.
Each test links to the risk and control it covers, so the examiner can follow the trail from risk to control to test.
You receive a dated, signed record stating recovery was confirmed.
List the vendor systems your operations depend on, and connect Codekeeper to the repositories and platforms they live in.
We rebuild each system, confirm it runs, and tie the results to the NIST CSF 2.0 Recover function and relevant IT Handbook booklets.
The proof arrives in the framing they reference, assembled and current ahead of your next exam.
Set up in a day. From there, the pack stays current on its own — ready for every exam cycle.
Book a demoJordan Adler
Ross Kilshaw
Thiago Mendes
We’ll email the sample FFIEC evidence pack to you.