RS.AN-08: An incident’s magnitude is estimated and validated

Info icon.

Subcategory is new to this version of the framework.

Description

[csf.tools Note: Subcategories do not have detailed descriptions. However NIST has provided the following implementation examples.]

Implementation Examples

1st: 1st Party Risk

Ex1: Review other potential targets of the incident to search for indicators of compromise and evidence of persistence

Ex2: Automatically run tools on targets to look for indicators of compromise and evidence of persistence