πΌ RS.AN-08: An incident's magnitude is estimated and validated
- Contextual name: πΌ RS.AN-08: An incident's magnitude is estimated and validated
- ID:
/frameworks/nist-csf-v2.0/rs-an/08 - Located in: πΌ Incident Analysis (RS.AN)
Descriptionβ
- Review other potential targets of the incident to search for indicators of compromise and evidence of persistence
- Automatically run tools on targets to look for indicators of compromise and evidence of persistence
Similarβ
- Sections
/frameworks/nist-sp-800-53-r5/ir/04/frameworks/nist-sp-800-53-r5/ir/06/frameworks/nist-sp-800-53-r5/ra/03/frameworks/nist-sp-800-53-r5/ra/07
Similar Sections (Take Policies From)β
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| πΌ NIST SP 800-53 Revision 5 β πΌ IR-4 Incident Handling | 15 | |||
| πΌ NIST SP 800-53 Revision 5 β πΌ IR-6 Incident Reporting | 3 | |||
| πΌ NIST SP 800-53 Revision 5 β πΌ RA-3 Risk Assessment | 4 | |||
| πΌ NIST SP 800-53 Revision 5 β πΌ RA-7 Risk Response |
Sub Sectionsβ
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|