|
DE.AE-02: Potentially adverse events are analyzed to better understand associated activities
|
http://cyfun.data.gift/data/nist_subcategory_DE_AE_02
|
5 |
|
DE.AE-02: Potentially adverse events are analyzed to better understand associated activities
|
http://cyfun.data.gift/data/subcategory_DE.AE-02
|
17 |
|
DE.AE-03.1: The logging functionality of protection and detection tools shall be enabled. Logs shall be backed up and retained for a predefined period and regularly reviewed to identify unusual or potentially harmful activity.
|
http://cyfun.data.gift/data/requirement_DE_AE_03_1
|
23 |
|
DE.AE-03.2: The organisation shall ensure that event data from critical systems is collected and correlated using information from multiple relevant sources.
|
http://cyfun.data.gift/data/requirement_DE_AE_03_2
|
19 |
|
DE.AE-03.3: The organisation shall combine event analysis with information from vulnerability scans, system performance data, monitoring of critical systems, and facility moni- toring, where feasible.
|
http://cyfun.data.gift/data/requirement_DE_AE_03_3
|
17 |
|
DE.AE-03: Information is correlated from multiple sources
|
http://cyfun.data.gift/data/nist_subcategory_DE_AE_03
|
5 |
|
DE.AE-03: Information is correlated from multiple sources
|
http://cyfun.data.gift/data/subcategory_DE.AE-03
|
21 |
|
DE.AE-04.1: The organisation shall assess the negative impacts of detected events on its oper- ations, assets, and individuals, and shall link these impacts to the results of its risk assessments.
|
http://cyfun.data.gift/data/requirement_DE_AE_04_1
|
18 |
|
DE.AE-04: The estimated impact and scope of adverse events are understood
|
http://cyfun.data.gift/data/nist_subcategory_DE_AE_04
|
5 |
|
DE.AE-04: The estimated impact and scope of adverse events are understood
|
http://cyfun.data.gift/data/subcategory_DE.AE-04
|
13 |
|
DE.AE-06.1: Information about adverse events shall be promptly delivered to authorised person- nel and systems to enable timely detection, investigation, and response.
|
http://cyfun.data.gift/data/requirement_DE_AE_06_1
|
19 |
|
DE.AE-06: Information on adverse events is provided to authorized staff and tools
|
http://cyfun.data.gift/data/nist_subcategory_DE_AE_06
|
5 |