IR-6: Incident Reporting

From NIST's SP800-53:

a. Require personnel to report suspected incidents to the organizational incident response capability within [Assignment: organization-defined time period]; and b. Report incident information to [Assignment: organization-defined authorities].

Cyber Threat Graph Context

Explore how this control relates to the wider threat graph

SP800-53 Control Mapped to NIST Cyber Security Framework

Generated from NISTs SP800-53/CSF Crosswalk mappings.

Control ID	Description
ID.SC-5	Response and recovery planning and testing are conducted with suppliers and third-party providers
RS.CO-2	Incidents are reported consistent with established criteria