💼 CC7.3 The entity evaluates security events to determine whether they could or have resulted in a failure of the entity to meet its objectives (security incidents) and, if so, takes actions to prevent or address such failures.
- ID:
/frameworks/soc-2/cc7/03
Description​
Empty...
Similar​
Sub Sections​
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|---|---|---|---|---|
| 💼 CC7.3-1 Responds to Security Incidents | 2 | no data | |||
| 💼 CC7.3-2 Communicates and Reviews Detected Security Events | 2 | no data | |||
| 💼 CC7.3-3 Develops and Implements Procedures to Analyze Security Incidents | 2 | no data | |||
| 💼 CC7.3-4 Assesses the Impact on Confidential Information | 2 | no data | |||
| 💼 CC7.3-5 Determines Confidential Information Used or Disclosed | 2 | no data | |||
| 💼 CC7.3-6 Assesses the Impact on Personal Information | no data | ||||
| 💼 CC7.3-7 Determines Personal Information Used or Disclosed | no data |