IR-4(1)—Automated Incident Handling Processes
MODERATE
HIGH
>Control Description
Support the incident handling process using [Assignment: organization-defined automated mechanisms].
>Supplemental Guidance
Automated mechanisms that support incident handling processes include online incident management systems and tools that support the collection of live response data, full network packet capture, and forensic analysis.