Skip to main content

💼 RS.MA-01: The incident response plan is executed in coordination with relevant third parties once an incident is declared

  • Contextual name: 💼 RS.MA-01: The incident response plan is executed in coordination with relevant third parties once an incident is declared
  • ID: /frameworks/nist-csf-v2.0/rs-ma/01
  • Located in: 💼 Incident Management (RS.MA)

Description

  1. Detection technologies automatically report confirmed incidents
  2. Request incident response assistance from the organization's incident response outsourcer
  3. Designate an incident lead for each incident
  4. Initiate execution of additional cybersecurity plans as needed to support incident response (for example, business continuity and disaster recovery)

Similar

  • Sections
    • /frameworks/nist-csf-v1.1/rs-rp/01
    • /frameworks/nist-csf-v1.1/rs-co/04
    • /frameworks/nist-sp-800-53-r5/ir/06
    • /frameworks/nist-sp-800-53-r5/ir/07
    • /frameworks/nist-sp-800-53-r5/ir/08
    • /frameworks/nist-sp-800-53-r5/sr/03
    • /frameworks/nist-sp-800-53-r5/sr/08

Similar Sections (Take Policies From)

SectionSub SectionsInternal RulesPoliciesFlags
💼 NIST CSF v1.1 → 💼 RS.CO-4: Coordination with stakeholders occurs consistent with response plans
💼 NIST CSF v1.1 → 💼 RS.RP-1: Response plan is executed during or after an incident
💼 NIST SP 800-53 Revision 5 → 💼 IR-6 Incident Reporting31
💼 NIST SP 800-53 Revision 5 → 💼 IR-7 Incident Response Assistance2
💼 NIST SP 800-53 Revision 5 → 💼 IR-8 Incident Response Plan1
💼 NIST SP 800-53 Revision 5 → 💼 SR-3 Supply Chain Controls and Processes3
💼 NIST SP 800-53 Revision 5 → 💼 SR-8 Notification Agreements

Sub Sections

SectionSub SectionsInternal RulesPoliciesFlags

Policies (1)

PolicyLogic CountFlags
📝 Google Organization Essential Contacts is not configured 🟢1🟢 x6