💼 Adverse Event Analysis (DE.AE)

• Contextual name: 💼 Adverse Event Analysis (DE.AE)
• ID: /frameworks/nist-csf-v2.0/de-ae
• Located in: 💼 NIST CSF v2.0

Description

Anomalies, indicators of compromise, and other potentially adverse events are analyzed to characterize the events and detect cybersecurity incidents.

Similar

Sub Sections

Section	Sub Sections	Internal Rules	Policies	Flags
💼 DE.AE-02: Potentially adverse events are analyzed to better understand associated activities			26
💼 DE.AE-03: Information is correlated from multiple sources			26
💼 DE.AE-04: The estimated impact and scope of adverse events are understood			14
💼 DE.AE-06: Information on adverse events is provided to authorized staff and tools			33
💼 DE.AE-07: Cyber threat intelligence and other contextual information are integrated into the analysis			22
💼 DE.AE-08: Incidents are declared when adverse events meet the defined incident criteria