💼 RS.AN-08: An incident's magnitude is estimated and validated
- Contextual name: 💼 RS.AN-08: An incident's magnitude is estimated and validated
- ID:
/frameworks/nist-csf-v2.0/rs-an/08 - Located in: 💼 Incident Analysis (RS.AN)
Description
- Review other potential targets of the incident to search for indicators of compromise and evidence of persistence
- Automatically run tools on targets to look for indicators of compromise and evidence of persistence
Similar
- Sections
/frameworks/nist-sp-800-53-r5/ir/04/frameworks/nist-sp-800-53-r5/ir/06/frameworks/nist-sp-800-53-r5/ra/03/frameworks/nist-sp-800-53-r5/ra/07
Similar Sections (Take Policies From)
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| 💼 NIST SP 800-53 Revision 5 → 💼 IR-4 Incident Handling | 15 | |||
| 💼 NIST SP 800-53 Revision 5 → 💼 IR-6 Incident Reporting | 3 | 1 | ||
| 💼 NIST SP 800-53 Revision 5 → 💼 RA-3 Risk Assessment | 4 | |||
| 💼 NIST SP 800-53 Revision 5 → 💼 RA-7 Risk Response |
Sub Sections
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|
Policies (1)
| Policy | Logic Count | Flags |
|---|---|---|
| 📝 Google Organization Essential Contacts is not configured 🟢 | 1 | 🟢 x6 |