πΌ 12.10.1 An incident response plan exists and is ready to be activated in the event of a suspected or confirmed security incident.
-
Contextual name: πΌ 12.10.1 An incident response plan exists and is ready to be activated in the event of a suspected or confirmed security incident.
-
ID:
/frameworks/pci-dss-v4.0.1/12/10/01 -
Located in: πΌ 12.10 Suspected and confirmed security incidents that could impact the CDE are responded to immediately.
Descriptionβ
The plan includes, but is not limited to:
- Roles, responsibilities, and communication and contact strategies in the event of a suspected or confirmed security incident, including notification of payment brands and acquirers, at a minimum.
- Incident response procedures with specific containment and mitigation activities for different types of incidents.
- Business recovery and continuity procedures.
- Data backup processes.
- Analysis of legal requirements for reporting compromises.
- Coverage and responses of all critical system components.
- Reference or inclusion of incident response procedures from the payment brands.
Similarβ
- Sections
/frameworks/pci-dss-v4.0/12/10/01
Similar Sections (Take Policies From)β
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| πΌ PCI DSS v4.0 β πΌ 12.10.1 An incident response plan exists and is ready to be activated in the event of a suspected or confirmed security incident. |
Similar Sections (Give Policies To)β
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| πΌ PCI DSS v4.0 β πΌ 12.10.1 An incident response plan exists and is ready to be activated in the event of a suspected or confirmed security incident. |
Sub Sectionsβ
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|