NIST CSF: ID.RA-2 Subcategory

From NIST's Cyber Security Framework (version 1):

Cyber threat intelligence is received from information sharing forums and sources

Cyber Threat Graph Context

Explore how this control relates to the wider threat graph

CSF Mapped to SP800-53 Controls

Generated from NIST's SP800-53/CSF Crosswalk mappings.

Node
PM-16: Threat Awareness Program
PM-15: Security and Privacy Groups and Associations
SI-5: Security Alerts, Advisories, and Directives

Related ISO 27001 Controls

Annex A controls from ISO 27001 (2013) which are related to this CSF subcategory, taken from mappings by NIST and additional data from Ofgem.

  • Contact with special interest groups (6.1.4)
    ISO 27001:2013

Related ISA/IEC 62443 Controls

Clauses and controls from IEC 62443 (62443-2-1 and 62443-3-3) which are related to this CSF subcategory, taken from mappings by NIST and additional data from Ofgem.

  • Conduct a detailed risk assessment (4.2.3.9)
    ISA/IEC 62443-2-1:2009
  • Conduct risk assessments throughout the lifecycle of the IACs (4.2.3.12)
    ISA/IEC 62443-2-1:2009

MITRE ATT&CK Techniques

See which MITRE ATT&CK techniques this control helps to protect against. This is based on mappings to associated SP800-53 controls.

ATT&CK ID Title Associated Tactics
T1210 Exploitation of Remote Services Lateral Movement
T1068 Exploitation for Privilege Escalation Privilege Escalation
T1212 Exploitation for Credential Access Credential Access
T1211 Exploitation for Defense Evasion Defense Evasion

CSF Mapped to the NCSC CAF

Cyber Assessment Framework mappings generated from UK Cabinet Office data.

Control ID Name Description
C1.d Identifying Security Incidents You contextualise alerts with knowledge of the threat and your systems, to identify those security incidents that require some form of response.
B5.a Resilience Preparation You are prepared to restore the operation of your essential function following adverse impact.