Navigate

IR-4 (3)

IR-4 (3): Continuity Of Operations

The organization identifies [Assignment: organization-defined classes of incidents] and [Assignment: organization-defined actions to take in response to classes of incidents] to ensure continuation of organizational missions and business functions.

Supplemental

Classes of incidents include, for example, malfunctions due to design/implementation errors and omissions, targeted malicious attacks, and untargeted malicious attacks. Appropriate incident response actions include, for example, graceful degradation, information system shutdown, fall back to manual mode/alternative technology whereby the system operates differently, employing deceptive measures, alternate information flows, or operating in a mode that is reserved solely for when systems are under attack.

CIA Levels
Confidentiality	moderate
Integrity	moderate
Availability	moderate

Overlays
Int-A, Int-B, Int-C, Privacy (PHI)

Related Controls

The controls below (if any) were marked by NIST as being related to IR-4 (3).

Control	Description
No controls

Enhancements

The controls below (if any) add on to the requirements of IR-4 (3).

Control	Description
No controls

Related CCIs

The CCIs below are tied to IR-4 (3).

CCI	Definition
CCI-000827	The organization defines and identifies classes of incidents for which organization-defined actions are to be taken to ensure continuation of organizational mission and business functions.
CCI-000828	The organization defines and identifies actions to take in response to organization-defined classes of incidents to ensure continuation of organizational missions and business functions.