CMMC 1.0 Practice IR.2.093 Requirement:
Detect and report events.
CMMC 1.0 IR.2.093 Requirement Explanation:
In order to respond to incidents you need to detect them. Detection can come in various forms. Users can notify the incident response team of an incident. The incident response team can also receive alerts from your systems.
Example CMMC 1.0 IR.2.093 Implementation:
Configure your systems to create alerts or alarms to notify you of important events that indicate a security incident. An example is receiving an alert from your anti-malware software that a malicious file was detected. Another example is an alert of a device on your network going down. After detecting an event you need to determine if it is a security incident which will allow you to activate your incident response plan. You need to report events and security incidents to the appropriate persons in your company so that they can react to them.
CMMC 1.0 IR.2.093 Scenario(s):
- Scenario 1:
You receive an alert stating that your company's website is down. Upon further investigation you determine that the website is under a denial of service attack. You activate your incident response plan to handle the incident.
Quick & Simple
Discover Our Cybersecurity Compliance Solutions:
Whether you need to meet and maintain your compliance requirements, help your clients meet them, or verify supplier compliance we have the expertise and solution for you
NIST SP 800-171 & CMMC Compliance
Become compliant, provide compliance services, or verify partner compliance with NIST SP 800-171 and CMMC requirements.
Become compliant, provide compliance services, or verify partner compliance with HIPAA security rule requirements.
FAR 52.204-21 Compliance
Become compliant, provide compliance services, or verify partner compliance with FAR 52.204-21 Basic Safeguarding of Covered Contractor Information Systems requirements.
ISO 27001 Compliance
Become compliant, provide compliance services, or verify partner compliance with ISO 27001 requirements.