800-53|IR-5(1)

Title

AUTOMATED TRACKING / DATA COLLECTION / ANALYSIS

Description

The organization employs automated mechanisms to assist in the tracking of security incidents and in the collection and analysis of incident information.

Supplemental

Automated mechanisms for tracking security incidents and collecting/analyzing incident information include, for example, the Einstein network monitoring device and monitoring online Computer Incident Response Centers (CIRCs) or other electronic databases of incidents.

Reference Item Details

Reference: NIST 800-53 - Security and Privacy Controls for Federal Information Systems and Organizations

Related: AU-7,IR-4

Category: INCIDENT RESPONSE

Parent Title: INCIDENT MONITORING

Family: INCIDENT RESPONSE

Baseline Impact: HIGH

Audit Items

View all Reference Audit Items

Name	Plugin	Audit Name
F5BI-DM-000281 - The BIG-IP appliance must be configured to employ automated mechanisms to assist in the tracking of security incidents.	F5	DISA F5 BIG-IP Device Management STIG v2r3

Detections

Analytics