⭐ Repository → 💼 SOC 2 → 💼 CC7 System Operations → 💼 CC7.4 The entity responds to identified security incidents by executing a defined incident-response program to understand, contain, remediate, and communicate security incidents, as appropriate.
💼 CC7.4-7 Obtains Understanding of Nature of Incident and Determines Containment Strategy
- ID:
/frameworks/soc-2/cc7/04/07
Description
An understanding of the nature (for example, the method by which the incident occurred and the affected system resources) and severity of the security incident is obtained to determine the appropriate containment strategy, including (1) a determination of the appropriate response time frame, and (2) the determination and execution of the containment approach.
Similar
- Internal
- ID:
dec-c-456b8057
- ID:
Sub Sections
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|