graphgrc

SCF - IRO-10 - Incident Stakeholder Reporting

Mechanisms exist to timely-report incidents to applicable:

• Internal stakeholders;
• Affected clients & third-parties; and
• Regulatory authorities.

  Mapped framework controls

  GDPR

• Art 33.1
• Art 33.2
• Art 33.3
• Art 33.4
• Art 33.5
• Art 34.1
• Art 34.2
• Art 34.3
• Art 34.4

ISO 27002

• A.6.8

NIST 800-53

• IR-6

SOC 2

• CC2.3
• CC7.4
• P6.3
• P6.7

Control questions

Does the organization timely-report incidents to applicable:

• Internal stakeholders;
• Affected clients & third-parties; and
• Regulatory authorities?

This site is open source. Improve this page.