>myctrl.tools
Preferences
Under active development Content is continuously updated and improved
Compare

DE.AE-07Cyber threat intelligence and other contextual information are integrated into the analysis

>Control Description

This adverse event analysis subcategory ensures that cyber threat intelligence and other contextual information are integrated into the analysis. Key activities include: Securely provide cyber threat intelligence feeds to detection technologies, processes, and personnel; Securely provide information from asset inventories to detection technologies, processes, and personnel; Rapidly acquire and analyze vulnerability disclosures for the organization’s technologies from suppliers, vendors, and third-party security advisories.

>Cross-Framework Mappings

NIST SP 800-53 r5

via NIST CSF 2.0 Concept Crosswalk
PM-16
Compare
RA-03
Compare
RA-10
Compare

PCI DSS v4.0.1

via NIST OLIR Catalog
12.3.4
Compare
12.5.1
Compare
6.3.1
Compare
6.4.3
Compare

ISO 27001:2022

via NIST OLIR Catalog
5.7
Compare

SOC 2 TSC

CC7.3
Compare

SCF

THR-01
Compare
THR-03
Compare
THR-10
Compare

>Informative References

Official NIST mappings to external frameworks and standards. Source: NIST CSF 2.0

CCMv4.0

LOG-03
LOG-05
SEF-06

CRI Profile v2.0

DE.AE-07
DE.AE-07.01
DE.AE-07.02

CSF v1.1

DE.AE-3

ISO/IEC 27001:2022

Mandatory Clause: None
Annex A Controls: 5.7

NICE Framework

DD-WRL-008
IO-WRL-001
IO-WRL-006
PD-WRL-001
PD-WRL-006

PCI DSS

6.3.1
12.5.1
12.3.4
6.4.3

SCF

THR-01
THR-03

SP 800-171 Rev 3

03.11.01

SP 800-53 Rev 5.1.1

PM-16
RA-03
RA-10

SP 800-53 Rev 5.2.0

PM-16
RA-03
RA-10

Ask AI

Configure your API key to use AI features.