Description
The organization provides an incident response support resource that offers advice and assistance to users of the information system for the handling and reporting of security incidents. The support resource is an integral part of the organization’s incident response capability.\n
Supplemental Guidance
Possible implementations of incident response support resources in an organization include a help desk or an assistance group and access to forensics services, when required.\n
Changes from Rev 4
Control text more general as ‘incidents’ versus ‘security incidents’
Enhancements
(1) The organization employs automated mechanisms to increase the availability of incident response- related information and support.\n
Compliance Mappings
ISO 17799 (legacy)
14.1.3
COBIT 4.1 (legacy)
DS8.1