Fedramp system Security Plan (ssp) High Baseline Template

IR-6 Incident Reporting (L) (M) (H)

Download 1.2 Mb.

Page	271/478
Date	16.12.2020
Size	1.2 Mb.
	#54609

1 ... 267 268 269 270 271 272 273 274 ... 478

FedRAMP-SSP-High-Baseline-Template
FedRAMP-SSP-High-Baseline-Template, North Carolina Summary Table of Ecoregion Characteristics

IR-6 Additional FedRAMP Requirements and Guidance Requirement
IR-6 What is the solution and how is it implemented Part a

IR-6 Incident Reporting (L) (M) (H)

The organization:

Requires personnel to report suspected security incidents to the organizational incident response capability within [FedRAMP Assignment: US-CERT incident reporting timelines as specified in NIST SP800-61 (as amended)]; and
Reports security incident information to [Assignment: organization-defined authorities].

IR-6 Additional FedRAMP Requirements and Guidance

Requirement: Report security incident information according to FedRAMP Incident Communications Procedure.

IR-6	Control Summary Information
Responsible Role:
Parameter IR-6(a):
Parameter IR-6(b):
Implementation Status (check all that apply): ☐ Implemented ☐ Partially implemented ☐ Planned ☐ Alternative implementation ☐ Not applicable
Control Origination (check all that apply): ☐ Service Provider Corporate ☐ Service Provider System Specific ☐ Service Provider Hybrid (Corporate and System Specific) ☐ Configured by Customer (Customer System Specific) ☐ Provided by Customer (Customer System Specific) ☐ Shared (Service Provider and Customer Responsibility) ☐ Inherited from pre-existing FedRAMP Authorization for Click here to enter text. ,

IR-6 What is the solution and how is it implemented?
Part a
Part b

Download 1.2 Mb.

Share with your friends:

1 ... 267 268 269 270 271 272 273 274 ... 478