💼 IR-6 Incident Reporting (L)(M)(H)
- ID:
/frameworks/fedramp-moderate-security-controls/ir/06
Description
a. Require personnel to report suspected incidents to the organizational incident response capability within [FedRAMP Assignment: US-CERT incident reporting timelines as specified in NIST Special Publication 800-61 (as amended)]; and
b. Report incident information to [Assignment: organization-defined authorities].
IR-6 Additional FedRAMP Requirements and Guidance:
Requirement: Reports security incident information according to FedRAMP Incident Communications Procedure.
Similar
- Sections
/frameworks/fedramp-high-security-controls/ir/06
- Internal
- ID:
dec-c-c04378a7
- ID:
Similar Sections (Take Policies From)
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|---|---|---|---|---|
| 💼 FedRAMP High Security Controls → 💼 IR-6 Incident Reporting (L)(M)(H) | 2 | 10 | 13 | no data |
Sub Sections
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|---|---|---|---|---|
| 💼 IR-6(1) Automated Reporting (M)(H) | 10 | no data | |||
| 💼 IR-6(3) Supply Chain Coordination (M)(H) | 2 | no data |
Policies (1)
| Policy | Logic Count | Flags | Compliance |
|---|---|---|---|
| 🛡️ Google Organization Essential Contacts is not configured🟢 | 1 | 🟢 x6 | no data |