πΌ IR-6 Incident Reporting (L)(M)(H)
- Contextual name: πΌ IR-6 Incident Reporting (L)(M)(H)
- ID:
/frameworks/fedramp-high-security-controls/ir/06 - Located in: πΌ Incident Response
Descriptionβ
a. Require personnel to report suspected incidents to the organizational incident response capability within [FedRAMP Assignment: US-CERT incident reporting timelines as specified in NIST Special Publication 800-61 (as amended)]; and
b. Report incident information to [Assignment: organization-defined authorities].
IR-6 Additional FedRAMP Requirements and Guidance:
Requirement: Reports security incident information according to FedRAMP Incident Communications Procedure.
Similarβ
- Sections
/frameworks/nist-sp-800-53-r5/ir/06
- Internal
- ID:
dec-c-c04378a7
- ID:
Similar Sections (Take Policies From)β
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| πΌ NIST SP 800-53 Revision 5 β πΌ IR-6 Incident Reporting | 3 |
Similar Sections (Give Policies To)β
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| πΌ FedRAMP Low Security Controls β πΌ IR-6 Incident Reporting (L)(M)(H) | ||||
| πΌ FedRAMP Moderate Security Controls β πΌ IR-6 Incident Reporting (L)(M)(H) | 2 | 12 |
Sub Sectionsβ
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| πΌ IR-6(1) Automated Reporting (M)(H) | 8 | 10 | ||
| πΌ IR-6(3) Supply Chain Coordination (M)(H) | 2 | 2 |