IR-7(2): Coordination With External Providers

Control Family:

Incident Response

Parent Control:

IR-7: Incident Response Assistance

Priority:

P2: Implement P2 security controls after implementation of P1 controls.

CSF v1.1 References:

PR.IP-9

Baselines:

(Not part of any baseline)

Next Version:

NIST Special Publication 800-53 Revision 5:
IR-7(2): Coordination with External Providers

Control Statement

The organization:

Establishes a direct, cooperative relationship between its incident response capability and external providers of information system protection capability; and
Identifies organizational incident response team members to the external providers.

Supplemental Guidance

External providers of information system protection capability include, for example, the Computer Network Defense program within the U.S. Department of Defense. External providers help to protect, monitor, analyze, detect, and respond to unauthorized activity within organizational information systems and networks.