7.2.1—7.2.1
>Control Description
DoD Components utilize existing Security Information and Event Management (SIEM) solution to develop rules and alerts for common threat events (e.g., malware, phishing, etc.) Alerts and/or rule triggers are fed into the parallel “Asset ID & Alert Correlation” activity to begin automation of responses.
>Cross-Framework Mappings
Ask AI
Configure your API key to use AI features.