Back

Include information on all affected assets in the incident response report.


CONTROL ID
12718
CONTROL TYPE
Establish/Maintain Documentation
CLASSIFICATION
Preventive

SUPPORTING AND SUPPORTED CONTROLS



This Control directly supports the implied Control(s):
  • Create an incident response report following an incident response., CC ID: 12700

There are no implementation support Controls.


SELECTED AUTHORITY DOCUMENTS COMPLIED WITH



  • A person falling under any of the following subparagraphs shall furnish the Minister of Science, ICT and Future Planning or the Korea Internet and Security Agency with the information related to intrusion cases, including statistics by type of intrusion cases, statistics of traffic of the relevant i… (Article 48-2(2), Act On Promotion of Information and Communications Network Utilization and Information Protection, Amended by Act No. 14080, Mar. 22, 2016)
  • Extent, duration or scope of the incident including information on the systems, resources, customers that were affected; (§ 7.3.12.b.i., Monetary Authority of Singapore: Technology Risk Management Guidelines)
  • Inventory and functional status of system equipment (e.g., fully functional, partially functional, nonfunctional); (§ 4.2.3 ¶ 1 Bullet 4, NIST SP 800-34, Contingency Planning Guide for Federal Information Systems, Rev. 1 (Final))