💼 IR-9 INFORMATION SPILLAGE RESPONSE
- ID:
/frameworks/nist-sp-800-53-r4/ir/09
Stats​
not available
Description​
The organization responds to information spills by: IR-9a. Identifying the specific information involved in the information system contamination; IR-9b. Alerting [Assignment: organization-defined personnel or roles] of the information spill using a method of communication not associated with the spill; IR-9c. Isolating the contaminated information system or system component; IR-9d. Eradicating the information from the contaminated information system or component; IR-9e. Identifying other information systems or system components that may have been subsequently contaminated; and IR-9f. Performing other [Assignment: organization-defined actions].
Similar​
- Internal
- ID:
dec-c-eeb05bb0
- ID:
Similar Sections (Give Policies To)​
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|---|---|---|---|---|
| 💼 NIST CSF v1.1 → 💼 ID.SC-5: Response and recovery planning and testing are conducted with suppliers and third-party providers | 1 | 1 | no data | ||
| 💼 NIST CSF v1.1 → 💼 PR.IP-9: Response plans (Incident Response and Business Continuity) and recovery plans (Incident Recovery and Disaster Recovery) are in place and managed | 4 | 5 | no data |
Sub Sections​
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|---|---|---|---|---|
| 💼 IR-9 (1) RESPONSIBLE PERSONNEL | no data | ||||
| 💼 IR-9 (2) TRAINING | no data | ||||
| 💼 IR-9 (3) POST-SPILL OPERATIONS | no data | ||||
| 💼 IR-9 (4) EXPOSURE TO UNAUTHORIZED PERSONNEL | no data |