STIGs RMF Controls Compare

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

Browse STIGs
Search
RMF Controls
Compare Versions

Resources

About
Release Notes
VPAT
DISA STIG Library

STIGs updated 7 hours ago

Powered by Pylon

© 2026 Beacon Cloud Solutions, Inc. All rights reserved.

← All Controls

IR-8

Incident ResponseRev 3

Incident Response Plan

CCI Identifiers (22)

CCI-000843The organization develops an incident response plan that provides the organization with a roadmap for implementing its incident response capability; describes the structure and organization of the incident response capability; provides a high-level approach for how the incident response capability fits into the overall organization; meets the unique requirements of the organization, which relate to mission, size, structure, and functions; defines reportable incidents; provides metrics for measuring the incident response capability within the organization; and defines the resources and management support needed to effectively maintain and mature an incident response capability.CCI-000844Develop an incident response plan that is reviewed and approved by organization-defined personnel or roles on an organization-defined frequency.CCI-000845Defines incident response personnel (identified by name and/or by role) and organizational elements to whom copies of the incident response plan are distributed.CCI-000846Distributes copies of the incident response plan to organization-defined incident response personnel (identified by name and/or by role) and organizational elements.CCI-000847The organization defines the frequency for reviewing the incident response plan.CCI-000848The organization reviews the incident response plan on an organization-defined frequency.CCI-000849Update the incident response plan to address system and organizational changes or problems encountered during plan implementation, execution, or testing.CCI-000850Communicate incident response plan changes to organization-defined incident response personnel (identified by name and/or by role) and organizational elements.CCI-002794Develop an incident response plan.CCI-002795Develop an incident response plan that provides the organization with a roadmap for implementing its incident response capability.CCI-002796Develop an incident response plan that describes the structure and organization of the incident response capability.CCI-002797Develop an incident response plan that provides a high-level approach for how the incident response capability fits into the overall organization.CCI-002798Develop an incident response plan that meets the unique requirements of the organization, which relate to mission, size, structure, and functions.CCI-002799Develop an incident response plan that defines reportable incidents.CCI-002800Develop an incident response plan that provides metrics for measuring the incident response capability within the organization.CCI-002801Develop an incident response plan that defines the resources and management support needed to effectively maintain and mature an incident response capability.CCI-002802Defines personnel or roles to review and approve the incident response plan.CCI-002803Defines incident response personnel (identified by name and/or by role) and organizational elements to whom incident response plan changes will be communicated.CCI-002804Protect the incident response plan from unauthorized disclosure and modification.CCI-004157Develop an incident response plan that addresses the sharing of incident information.CCI-004158Defines the frequency organization-defined personnel or roles will review and approve the incident response plan.CCI-004159Develop an incident response plan that explicitly designates responsibility for incident response to organization-defined entities, personnel, or roles.

Linked STIG Checks (0)

No STIG checks reference this control.