Navigate

IR-4(1)

IR-4(1): Automated Incident Handling Processes

Support the incident handling process using [automated mechanisms used to support the incident handling process are defined;].

Supplemental

Automated mechanisms that support incident handling processes include online incident management systems and tools that support the collection of live response data, full network packet capture, and forensic analysis.

CIA Levels
Confidentiality	moderate
Integrity	moderate
Availability	moderate

Overlays
DAF Baseline, Int-A, Int-B, Int-C

CSF Categories
None

Related Controls

The controls below (if any) were marked by NIST as being related to IR-4(1).

Control	Description
No controls

Enhancements

The controls below (if any) add on to the requirements of IR-4(1).

Control	Description
No controls

Related CCIs

The CCIs below are tied to IR-4(1).

CCI	Definition
CCI-000825	Support the incident handling process using organization-defined automated mechanisms.
CCI-004137	Defines the automated mechanisms for supporting the incident handling process.