CM-3(5): Automated Security Response

CSF v1.1 References:


(Not part of any baseline)

Next Version:

Control Statement

The information system implements [Assignment: organization-defined security responses] automatically if baseline configurations are changed in an unauthorized manner.

Supplemental Guidance

Security responses include, for example, halting information system processing, halting selected system functions, or issuing alerts/notifications to organizational personnel when there is an unauthorized modification of a configuration item.