πΌ RS.MA-01: The incident response plan is executed in coordination with relevant third parties once an incident is declared
- Contextual name: πΌ RS.MA-01: The incident response plan is executed in coordination with relevant third parties once an incident is declared
- ID:
/frameworks/nist-csf-v2.0/rs-ma/01 - Located in: πΌ Incident Management (RS.MA)
Descriptionβ
- Detection technologies automatically report confirmed incidents
- Request incident response assistance from the organization's incident response outsourcer
- Designate an incident lead for each incident
- Initiate execution of additional cybersecurity plans as needed to support incident response (for example, business continuity and disaster recovery)
Similarβ
- Sections
/frameworks/nist-csf-v1.1/rs-rp/01/frameworks/nist-csf-v1.1/rs-co/04/frameworks/nist-sp-800-53-r5/ir/06/frameworks/nist-sp-800-53-r5/ir/07/frameworks/nist-sp-800-53-r5/ir/08/frameworks/nist-sp-800-53-r5/sr/03/frameworks/nist-sp-800-53-r5/sr/08
Similar Sections (Take Policies From)β
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| πΌ NIST CSF v1.1 β πΌ RS.CO-4: Coordination with stakeholders occurs consistent with response plans | ||||
| πΌ NIST CSF v1.1 β πΌ RS.RP-1: Response plan is executed during or after an incident | ||||
| πΌ NIST SP 800-53 Revision 5 β πΌ IR-6 Incident Reporting | 3 | |||
| πΌ NIST SP 800-53 Revision 5 β πΌ IR-7 Incident Response Assistance | 2 | |||
| πΌ NIST SP 800-53 Revision 5 β πΌ IR-8 Incident Response Plan | 1 | |||
| πΌ NIST SP 800-53 Revision 5 β πΌ SR-3 Supply Chain Controls and Processes | 3 | |||
| πΌ NIST SP 800-53 Revision 5 β πΌ SR-8 Notification Agreements |
Sub Sectionsβ
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|