In the context of cyber resilience, what is the primary strategic purpose of precisely defining Recovery Time Objectives (RTO) and Recovery Point Objectives (RPO) for critical business functions?

In the context of cyber resilience, which is an organization's ability to prepare for, respond to, and recover from cyberattacks or other disruptions to ensure the continuity of its essential operations, precisely defining Recovery Time Objectives (RTO) and Recovery Point Objectives (RPO) for critical business functions serves a singular, primary strategic purpose. A Recovery Time Objective (RTO) is the maximum tolerable duration for a critical business function to be unavailable after a disruption. For example, if a company's online ordering system has an RTO of four hours, it means the business must be able to restore that system to operation within four hours of an outage. A Recovery Point Objective (RPO) is the maximum ....