| 💼 FedRAMP High Security Controls → 💼 IR-4 Incident Handling (L)(M)(H) | 5 | | 1 | | no data |
| 💼 FedRAMP Low Security Controls → 💼 IR-4 Incident Handling (L)(M)(H) | | | | | no data |
| 💼 NIST CSF v2.0 → 💼 DE.AE-02: Potentially adverse events are analyzed to better understand associated activities | | | 35 | | no data |
| 💼 NIST CSF v2.0 → 💼 DE.AE-03: Information is correlated from multiple sources | | | 50 | | no data |
| 💼 NIST CSF v2.0 → 💼 DE.AE-06: Information on adverse events is provided to authorized staff and tools | | | 33 | | no data |
| 💼 NIST CSF v2.0 → 💼 DE.AE-08: Incidents are declared when adverse events meet the defined incident criteria | | | | | no data |
| 💼 NIST CSF v2.0 → 💼 ID.IM-01: Improvements are identified from evaluations | | | 26 | | no data |
| 💼 NIST CSF v2.0 → 💼 ID.IM-02: Improvements are identified from security tests and exercises, including those done in coordination with suppliers and relevant third parties | | | 40 | | no data |
| 💼 NIST CSF v2.0 → 💼 ID.IM-03: Improvements are identified from execution of operational processes, procedures, and activities | | | 41 | | no data |
| 💼 NIST CSF v2.0 → 💼 RC.CO-03: Recovery activities and progress in restoring operational capabilities are communicated to designated internal and external stakeholders | | | 1 | | no data |
| 💼 NIST CSF v2.0 → 💼 RC.CO-04: Public updates on incident recovery are shared using approved methods and messaging | | | 22 | | no data |
| 💼 NIST CSF v2.0 → 💼 RC.RP-01: The recovery portion of the incident response plan is executed once initiated from the incident response process | | | 12 | | no data |
| 💼 NIST CSF v2.0 → 💼 RC.RP-02: Recovery actions are selected, scoped, prioritized, and performed | | | 12 | | no data |
| 💼 NIST CSF v2.0 → 💼 RC.RP-06: The end of incident recovery is declared based on criteria, and incident-related documentation is completed | | | | | no data |
| 💼 NIST CSF v2.0 → 💼 RS.AN-03: Analysis is performed to establish what has taken place during an incident and the root cause of the incident | | | 17 | | no data |
| 💼 NIST CSF v2.0 → 💼 RS.AN-06: Actions performed during an investigation are recorded, and the records' integrity and provenance are preserved | | | 18 | | no data |
| 💼 NIST CSF v2.0 → 💼 RS.AN-07: Incident data and metadata are collected, and their integrity and provenance are preserved | | | 18 | | no data |
| 💼 NIST CSF v2.0 → 💼 RS.AN-08: An incident's magnitude is estimated and validated | | | 1 | | no data |
| 💼 NIST CSF v2.0 → 💼 RS.CO-02: Internal and external stakeholders are notified of incidents | | | 31 | | no data |
| 💼 NIST CSF v2.0 → 💼 RS.CO-03: Information is shared with designated internal and external stakeholders | | | 19 | | no data |
| 💼 NIST CSF v2.0 → 💼 RS.MA-02: Incident reports are triaged and validated | | | 25 | | no data |
| 💼 NIST CSF v2.0 → 💼 RS.MA-03: Incidents are categorized and prioritized | | | 1 | | no data |
| 💼 NIST CSF v2.0 → 💼 RS.MA-04: Incidents are escalated or elevated as needed | | | 1 | | no data |
| 💼 NIST CSF v2.0 → 💼 RS.MA-05: The criteria for initiating incident recovery are applied | | | | | no data |
| 💼 NIST CSF v2.0 → 💼 RS.MI-01: Incidents are contained | | | 7 | | no data |
| 💼 NIST CSF v2.0 → 💼 RS.MI-02: Incidents are eradicated | | | 7 | | no data |