💼 Adverse Event Analysis (DE.AE)
- ID:
/frameworks/nist-csf-v2.0/de-ae
Description​
Anomalies, indicators of compromise, and other potentially adverse events are analyzed to characterize the events and detect cybersecurity incidents.
Similar​
Sub Sections​
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|---|---|---|---|---|
| 💼 DE.AE-02: Potentially adverse events are analyzed to better understand associated activities | 35 | no data | |||
| 💼 DE.AE-03: Information is correlated from multiple sources | 50 | no data | |||
| 💼 DE.AE-04: The estimated impact and scope of adverse events are understood | 14 | no data | |||
| 💼 DE.AE-06: Information on adverse events is provided to authorized staff and tools | 33 | no data | |||
| 💼 DE.AE-07: Cyber threat intelligence and other contextual information are integrated into the analysis | 38 | no data | |||
| 💼 DE.AE-08: Incidents are declared when adverse events meet the defined incident criteria | no data |