DE.AE-06:

Information on adverse events is provided to authorized staff and tools

Implementation Examples

Ex1:

Use cybersecurity software to generate alerts and provide them to the security operations center (SOC), incident responders, and incident response tools

Ex2:

Incident responders and other authorized personnel can access log analysis findings at all times

Ex3:

Automatically create and assign tickets in the organization's ticketing system when certain types of alerts occur

Ex4:

Manually create and assign tickets in the organization's ticketing system when technical staff discover indicators of compromise

Frameworks and Controls

NIST Cybersecurity Framework V2.0

GV: Govern
ID: Identify
PR: Protect
DE: Detect
- Continuous Monitoring (DE.CM)
- Adverse Event Analysis (DE.AE)
RS: Respond
RC: Recover

CMMC Level 1

NIST SP 800-171
- CMMC Level 2 - NIST SP 800-171 r2
CMMC Level 3

DE.AE-06:

Information on adverse events is provided to authorized staff and tools

Implementation Examples

Ex1:

Ex2:

Ex3:

Ex4:

Peaches.Cloud

Quick Links

Contact

Support Our Research