πΌ A.16.1.4 Assessment of and decision on information security events
- Contextual name: πΌ A.16.1.4 Assessment of and decision on information security events
- ID:
/frameworks/iso-iec-27001-2013/16/01/04 - Located in: πΌ A.16.1 Management of information security incidents and improvements
Descriptionβ
Information security events shall be assessed and it shall be decided if they are to be classified as information security incidents.
Similarβ
- Internal
- ID:
dec-c-8798e659
- ID:
Similar Sections (Give Policies To)β
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| πΌ NIST CSF v1.1 β πΌ DE.AE-2: Detected events are analyzed to understand attack targets and methods | 19 | 22 | ||
| πΌ NIST CSF v1.1 β πΌ DE.AE-4: Impact of events is determined | 14 | 14 | ||
| πΌ NIST CSF v1.1 β πΌ RS.AN-2: The impact of the incident is understood | ||||
| πΌ NIST CSF v1.1 β πΌ RS.AN-4: Incidents are categorized consistent with response plans |
Sub Sectionsβ
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|