IR-4(1): Automated Incident Handling Processes

Control Family:

Incident Response

CSF v2.0 References:


  • Moderate
  • High

Previous Version:

Control Statement

Support the incident handling process using [Assignment: organization-defined automated mechanisms].

Supplemental Guidance

Automated mechanisms that support incident handling processes include online incident management systems and tools that support the collection of live response data, full network packet capture, and forensic analysis.