>myctrl.tools
Preferences
Under active development Content is continuously updated and improved
Compare

IR-03Incident Response

>Control Description

Confirmed incidents are assigned a priority level and managed to resolution. If applicable, Organization coordinates the incident response with business contingency activities.

Theme

Process

Type

Preventive

Policy/Standard

Incident Management Policy

>Implementation Guidance

1. Prepare, document, and communicate the Security Incident Management Policy within the organization. 2. Ensure that priority level are assigned to a sample of incidents and that they are tracked to resolution. 3. For any crisis declared incidents, validate that business contingency activities are performed.

>Testing Procedure

1. Inspect the Organization Security Incident Management Policy. 2. Validate that priority level are assigned to a sample of incidents and ensure that they are tracked to resolution. 3. Validate that for any crisis declared incidents, that business contingency activities were performed.

>Audit Artifacts

E-IR-02
E-IR-06

>Framework Mappings

Cross-framework mappings provided by Adobe CCF Open Source under Creative Commons License.

NIST CSF
6

DE.DP-3
DE.DP-5
RS.CO-3
RS.CO-4
RS.MI-2
RS.IM-2

CIS Controls
1

17.9

ISO 27002:2022
2

5.25
5.26

FedRAMP Rev 5
4

IR-04
IR-05
IR-09
IR-03 (02)

PCI DSS
1

12.10.1

HIPAA Security Rule
2

164.308(a)(6)(i)
164.308(a)(6)(ii)

SOC 2
1

CC7.4

BSI C5
6

COS-01
OPS-20
SIM-01
SIM-02
SIM-03
SIM-05

TX-RAMP
4

IR-3(2)
IR-4
IR-5
IR-9

Ask AI

Configure your API key to use AI features.