💼 Adverse Event Analysis (DE.AE)

• Contextual name: 💼 Adverse Event Analysis (DE.AE)
• ID: /frameworks/nist-csf-v2.0/de-ae
• Located in: 💼 NIST CSF v2.0

Description

Anomalies, indicators of compromise, and other potentially adverse events are analyzed to characterize the events and detect cybersecurity incidents.

Similar

Sub Sections

Section	Sub Sections	Internal Rules	Policies	Flags
💼 DE.AE-02: Potentially adverse events are analyzed to better understand associated activities			31
💼 DE.AE-03: Information is correlated from multiple sources			46
💼 DE.AE-04: The estimated impact and scope of adverse events are understood			13
💼 DE.AE-06: Information on adverse events is provided to authorized staff and tools			32
💼 DE.AE-07: Cyber threat intelligence and other contextual information are integrated into the analysis			37
💼 DE.AE-08: Incidents are declared when adverse events meet the defined incident criteria