CoreOS 4.x - Incident Response

Control responses for NIST 800-53 rev4.

NOTE: All CoreOS content is under active development through the ComplianceAsCode Project. Do not consider this content production ready!


Requirements Traceability Matrix

Control Name Status
IR-1 Incident Response Policy And Procedures

not applicable

IR-2 Incident Response Training

not applicable

IR-2 (1) Simulated Events

not applicable

IR-2 (2) Automated Training Environments

not applicable

IR-3 Incident Response Testing

not applicable

IR-3 (1) Automated Testing

not applicable

IR-3 (2) Coordination With Related Plans

not applicable

IR-4 Incident Handling

not applicable

IR-4 (1) Automated Incident Handling Processes

not applicable

IR-4 (2) Dynamic Reconfiguration

not applicable

IR-4 (3) Continuity Of Operations

not applicable

IR-4 (4) Information Correlation

not applicable

IR-4 (5) Automatic Disabling Of Information System

not applicable

IR-4 (6) Insider Threats - Specific Capabilities

not applicable

IR-4 (7) Insider Threats - Intra-Organization Coordination

not applicable

IR-4 (8) Correlation With External Organizations

not applicable

IR-4 (9) Dynamic Response Capability

not applicable

IR-4 (10) Supply Chain Coordination

not applicable

IR-5 Incident Monitoring

not applicable

IR-5 (1) Automated Tracking / Data Collection / Analysis

not applicable

IR-6 Incident Reporting

not applicable

IR-6 (1) Automated Reporting

not applicable

IR-6 (2) Vulnerabilities Related To Incidents

not applicable

IR-6 (3) Coordination With Supply Chain

not applicable

IR-7 Incident Response Assistance

not applicable

IR-7 (1) Automation Support For Availability Of Information / Support

not applicable

IR-7 (2) Coordination With External Providers

not applicable

IR-8 Incident Response Plan

not applicable

IR-9 Information Spillage Response

not applicable

IR-9 (1) Responsible Personnel

not applicable

IR-9 (2) Training

not applicable

IR-9 (3) Post-Spill Operations