SI-4(7)
-
Requirement
- Notify [Assignment: organization-defined incident response personnel (identified by name and/or by role)] of detected suspicious events; and
- Take the following actions upon detection: [Assignment: organization-defined least-disruptive actions to terminate suspicious events].
-
Discussion
Least-disruptive actions include initiating requests for human responses.
NIST 800-53A Assessment Guidance
CMMC Training
Our CMMC Overview Course simplifies CMMC. Enroll so you can make informed decisions!