CMMC 1.0 Practice IR.2.093 Requirement:

Detect and report events.

CMMC 1.0 IR.2.093 Requirement Explanation:

In order to respond to incidents you need to detect them. Detection can come in various forms. Users can notify the incident response team of an incident. The incident response team can also receive alerts from your systems.

Example CMMC 1.0 IR.2.093 Implementation:

Configure your systems to create alerts or alarms to notify you of important events that indicate a security incident. An example is receiving an alert from your anti-malware software that a malicious file was detected. Another example is an alert of a device on your network going down. After detecting an event you need to determine if it is a security incident which will allow you to activate your incident response plan. You need to report events and security incidents to the appropriate persons in your company so that they can react to them.

CMMC 1.0 IR.2.093 Scenario(s):

- Scenario 1:

You receive an alert stating that your company's website is down. Upon further investigation you determine that the website is under a denial of service attack. You activate your incident response plan to handle the incident.
 

Discover Our NIST SP 800-171 & CMMC 2.0 Solutions:

 /assets/images/app/complaince_accelerator.gif

Compliance Accelerator

Power through compliance. Meet and maintain your NIST SP 800-171 & CMMC 2.0 compliance requirements.
 /assets/images/app/quantum_accelerator.gif

Quantum Assessor

Transform your business. Create new revenue streams and provide scalability for your NIST SP 800-171 and CMMC 2.0 services.
 /assets/images/app/supply_chain_verifier.gif

Supply Chain Verifier

Trust is everything. Verify, monitor, and support subcontactor compliance.