IRO-09.2 ยท Recurring Incident Analysis

Control Description

Mechanisms exist to periodically review incident response activities for the existence of recurring incidents.

Control Question
Assessment question for control validation

Does the organization periodically review incident response activities for the existence of recurring incidents?

Control Weighting
5
Validation Cadence
Annual
NIST CSF Function
Identify
Supply Chain Risk Management (SCRM) Tiers
Applicable SCRM tier levels for this control
Tier 2 - Operational
Tier 3 - Tactical
Additional Metadata
Applicability (Process):
x