IR-6: Incident Reporting

personnel is/are required to report suspected incidents to the organizational incident response capability within time period ;

incident information is reported to authorities .

Incident response policy

procedures addressing incident reporting

incident reporting records and documentation

incident response plan

system security plan

privacy plan

other relevant documents or records

Organizational personnel with incident reporting responsibilities

organizational personnel with information security and privacy responsibilities

personnel who have/should have reported incidents

personnel (authorities) to whom incident information is to be reported

system users

Organizational processes for incident reporting

mechanisms supporting and/or implementing incident reporting