>myctrl.tools
GitHub

IR-3Incident Response Testing

MODERATE
HIGH
PRIVACY

>Control Description

Test the effectiveness of the incident response capability for the system [Assignment: organization-defined frequency] using the following tests: [Assignment: organization-defined tests].

>Supplemental Guidance

Organizations test incident response capabilities to determine their effectiveness and identify potential weaknesses or deficiencies. Incident response testing includes the use of checklists, walk-through or tabletop exercises, and simulations (parallel or full interrupt). Incident response testing can include a determination of the effects on organizational operations and assets and individuals due to incident response. The use of qualitative and quantitative data aids in determining the effectiveness of incident response processes.

>Related Controls

CP-3
CP-4
IR-2
IR-4
IR-8
PM-14

>Control Enhancements

IR-3(1)
IR-3(2)
IR-3(3)