Following the identification of a cyber security incident, the cyber security incident response plan is enacted.
Topic
Enacting cyber security incident response plans
Applicable to
all
History
Dec 2023
Following the identification of a cyber security incident, the cyber security incident response plan is enacted.
The existing control relating to enacting a cyber security incident response plan following the identification of cyber security incidents was reworded.
Sep 2023
Following the identification of a cyber security incident, an organisation’s cyber security incident response plan is enacted.
References to ‘incident response plan’ were replaced with ‘cyber security incident response plan’.
Mar 2023
Following the identification of a cyber security incident, an organisation’s incident response plan is enacted.
A new control was added covering an organisation enacting their incident response plan following the identification of a cyber security incident. This control has been mapped to Essential Eight Maturity Level Three of the Essential Eight Maturity Model reflecting that this is part of actioning signs of compromise.