IRO-11 ยท Incident Reporting Assistance

Control Description

Mechanisms exist to provide incident response advice and assistance to users of Technology Assets, Applications and/or Services (TAAS) for the handling and reporting of actual and potential cybersecurity and data protection incidents.

Control Question
Assessment question for control validation

Does the organization provide incident response advice and assistance to users of Technology Assets, Applications and/or Services (TAAS) for the handling and reporting of actual and potential cybersecurity and data protection incidents?

Control Weighting
5
Validation Cadence
Annual
NIST CSF Function
Respond
Supply Chain Risk Management (SCRM) Tiers
Applicable SCRM tier levels for this control
Tier 2 - Operational
Core Control Designations
Special designations and baseline inclusions
ESP Level 2: IRO-11
ESP Level 3: IRO-11
Additional Metadata
Applicability (Process):
x
Errata & Additional Notes

- wordsmithed control