Review the activities, status, and results of the incident management and control process with higher level managers and resolve issues.
Incident management and control is institutionalized as a defined process.
Establish and maintain the description of a defined incident management and control process.
Collect incident management and control work products, measures, measurement results, and improvement information derived from planning and performing the process to support future use and improvement of the organization’s processes and process assets.
Information assets are prioritized to ensure the resilience of high-value services in which they are used.
Information assets are prioritized relative to their importance in supporting the delivery of high-value services.
Information assets that support high-value services are categorized as to their organizational sensitivity.
Administrative, technical, and physical controls for information assets are identified, implemented, monitored, and managed.
Resilience requirements that have been defined are assigned to information assets.
Administrative, technical, and physical controls that are required to meet the established resilience requirements are identified and implemented.
Passcode