💼 CC7.3 The entity evaluates security events to determine whether they could or have resulted in a failure of the entity to meet its objectives (security incidents) and, if so, takes actions to prevent or address such failures.

• Contextual name: 💼 CC7.3 The entity evaluates security events to determine whether they could or have resulted in a failure of the entity to meet its objectives (security incidents) and, if so, takes actions to prevent or address such failures.

• ID: /frameworks/soc-2/cc7/03

• Located in: 💼 CC7 System Operations

Description

Empty...

Similar

Sub Sections

Section	Sub Sections	Internal Rules	Policies	Flags
💼 CC7.3-1 Responds to Security Incidents
💼 CC7.3-2 Communicates and Reviews Detected Security Events
💼 CC7.3-3 Develops and Implements Procedures to Analyze Security Incidents
💼 CC7.3-4 Assesses the Impact on Confidential Information
💼 CC7.3-5 Determines Confidential Information Used or Disclosed
💼 CC7.3-6 Assesses the Impact on Personal Information
💼 CC7.3-7 Determines Personal Information Used or Disclosed