| 💼 12.10.1 An incident response plan exists and is ready to be activated in the event of a suspected or confirmed security incident. | | | | | no data |
| 💼 12.10.2 At least once every 12 months, the security incident response plan is reviewed and the content is updated as needed, and tested. | | | | | no data |
| 💼 12.10.3 Specific personnel are designated to be available on a 24/7 basis to respond to suspected or confirmed security incidents. | | | | | no data |
| 💼 12.10.4 Personnel responsible for responding to suspected and confirmed security incidents are appropriately and periodically trained on their incident response responsibilities. | 1 | | | | no data |
|  💼 12.10.4.1 The frequency of periodic training for incident response personnel is defined in the entity's targeted risk analysis. | | | | | no data |
| 💼 12.10.5 The security incident response plan includes monitoring and responding to alerts from security monitoring systems. | | | 1 | | no data |
| 💼 12.10.6 The security incident response plan is modified and evolved according to lessons learned and to incorporate industry developments. | | | | | no data |
| 💼 12.10.7 Incident response procedures are in place, to be initiated upon the detection of stored PAN anywhere it is not expected. | | | | | no data |