CCI-000832

Implementation Guidance

The organization being inspected/assessed will document within their incident handling plan, procedures to leverage the Joint Incident Management System (JIMS). For the DoD, JIMS is the automated mechanism.

Validation Procedures

The organization conducting the inspection/assessment obtains and examines the incident handling plan to ensure that there are procedures identified to leverage the JIMS.

Compelling Evidence

1.) Signed and dated Incident Handling Plan, referencing information system security incidents section