19.5: Maintain Contact Information For Reporting Security Incidents

CSF v1.1 References:

Group:

Control Statement

Assemble and maintain information on third-party contact information to be used to report a security incident, such as Law Enforcement, relevant government departments, vendors, and Information Sharing and Analysis Center (ISAC) partners.

[csf.tools Note: For more information on the Critical Security Controls, visit the Center for Internet Security.]