last sync: 2024-Apr-24 17:46:58 UTC

Microsoft Managed Control 1366 - Incident Handling | Information Correlation | Regulatory Compliance - Incident Response

Azure BuiltIn Policy definition

Source Azure Portal
Display name Microsoft Managed Control 1366 - Incident Handling | Information Correlation
Id 06c45c30-ae44-4f0f-82be-41331da911cc
Version 1.0.0
Details on versioning
Category Regulatory Compliance
Microsoft Learn
Description Microsoft implements this Incident Response control
Additional metadata Name/Id: ACF1366 / Microsoft Managed Control 1366
Category: Incident Response
Title: Incident Handling | Information Correlation
Ownership: Customer, Microsoft
Description: The organization correlates incident information and individual incident responses to achieve an organization-wide perspective on incident awareness and response.
Requirements: The Security Response Team tracks all incidents affecting Azure; collects data about each incident as well as Post Incident Reports; and analyzes the gathered data to enhance the understanding of incident awareness and response across Azure. The team performs monthly metric reviews and weekly post-mortems which correlates incident information and individual incident managements. The monthly metrics provide a better understanding and perspective of the threats against applications, people, and assets.
Mode Indexed
Type Static
Preview False
Deprecated False
Effect Fixed
audit
RBAC role(s) none
Rule aliases none
Rule resource types IF (2)
Microsoft.Resources/subscriptions
Microsoft.Resources/subscriptions/resourceGroups
Compliance Not a Compliance control
Initiatives usage none
History none
JSON compare n/a
JSON
api-version=2021-06-01
EPAC