Skip to main content

💼 RS.MI-02: Incidents are eradicated

  • Contextual name: 💼 RS.MI-02: Incidents are eradicated
  • ID: /frameworks/nist-csf-v2.0/rs-mi/02
  • Located in: 💼 Incident Mitigation (RS.MI)

Description

  1. Cybersecurity technologies and cybersecurity features of other technologies (e.g., operating systems, network infrastructure devices) automatically perform eradication actions
  2. Allow incident responders to manually select and perform eradication actions
  3. Allow a third party (e.g., managed security service provider) to perform eradication actions on behalf of the organization

Similar

  • Sections
    • /frameworks/nist-csf-v1.1/rs-mi/02
    • /frameworks/nist-sp-800-53-r5/ir/04

Similar Sections (Take Policies From)

SectionSub SectionsInternal RulesPoliciesFlags
💼 NIST CSF v1.1 → 💼 RS.MI-2: Incidents are mitigated77
💼 NIST SP 800-53 Revision 5 → 💼 IR-4 Incident Handling15

Sub Sections

SectionSub SectionsInternal RulesPoliciesFlags

Policies (7)

PolicyLogic CountFlags
📝 Azure Subscription Microsoft Defender For (Managed Instance) Azure SQL Databases is not set to On 🟢1🟢 x6
📝 Azure Subscription Microsoft Defender For App Services is not set to On 🟢1🟢 x6
📝 Azure Subscription Microsoft Defender For Containers is not set to On 🟢1🟢 x6
📝 Azure Subscription Microsoft Defender For Key Vault is not set to On 🟢1🟢 x6
📝 Azure Subscription Microsoft Defender For Servers is not set to On 🟢1🟢 x6
📝 Azure Subscription Microsoft Defender For SQL Servers On Machines is not set to On 🟢1🟢 x6
📝 Azure Subscription Microsoft Defender For Storage is not set to On 🟢1🟢 x6