πΌ IR-8 Incident Response Plan (L)(M)(H)
- Contextual name: πΌ IR-8 Incident Response Plan (L)(M)(H)
- ID:
/frameworks/fedramp-low-security-controls/ir/08 - Located in: πΌ Incident Response
Descriptionβ
a. Develop an incident response plan that:
-
Provides the organization with a roadmap for implementing its incident response capability;
-
Describes the structure and organization of the incident response capability;
-
Provides a high-level approach for how the incident response capability fits into the overall organization;
-
Meets the unique requirements of the organization, which relate to mission, size, structure, and functions;
-
Defines reportable incidents;
-
Provides metrics for measuring the incident response capability within the organization;
-
Defines the resources and management support needed to effectively maintain and mature an incident response capability;
-
Addresses the sharing of incident information;
-
Is reviewed and approved by [Assignment: organization-defined personnel or roles] [FedRAMP Assignment: at least annually]; and
-
Explicitly designates responsibility for incident response to [Assignment: organization-defined entities, personnel, or roles].
b. Distribute copies of the incident response plan to [FedRAMP Assignment: see additional FedRAMP Requirements and Guidance];
c. Update the incident response plan to address system and organizational changes or problems encountered during plan implementation, execution, or testing;
d. Communicate incident response plan changes to [FedRAMP Assignment: see additional FedRAMP Requirements and Guidance]; and
e. Protect the incident response plan from unauthorized disclosure and modification.
IR-8 Additional FedRAMP Requirements and Guidance:
(b) Requirement: The service provider defines a list of incident response personnel (identified by name and/or by role) and organizational elements. The incident response list includes designated FedRAMP personnel.
(d) Requirement: The service provider defines a list of incident response personnel (identified by name and/or by role) and organizational elements. The incident response list includes designated FedRAMP personnel.
Similarβ
- Sections
/frameworks/nist-sp-800-53-r5/ir/08/frameworks/fedramp-high-security-controls/ir/08
- Internal
- ID:
dec-c-a7da9af2
- ID:
Similar Sections (Take Policies From)β
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| πΌ FedRAMP High Security Controls β πΌ IR-8 Incident Response Plan (L)(M)(H) | ||||
| πΌ NIST SP 800-53 Revision 5 β πΌ IR-8 Incident Response Plan | 1 |
Sub Sectionsβ
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|