4.H(1)—Written Incident Response Plan
>Control Description
As part of its Information Security Program, each Licensee shall establish a written incident response plan designed to promptly respond to, and recover from, any Cybersecurity Event that compromises the confidentiality, integrity, or availability of Nonpublic Information in its possession, the Licensee's Information Systems, or the continuing functionality of any aspect of the Licensee's business or operations.
>Cross-Framework Mappings
Ask AI
Configure your API key to use AI features.