AzPolicyAdvertizer

last sync: 2025-Sep-17 17:22:58 UTC

Incorporate simulated contingency training | Regulatory Compliance - Operational

Azure BuiltIn Policy definition

Source

Azure Portal

Display name

Incorporate simulated contingency training

9c954fcf-6dd8-81f1-41b5-832ae5c62caf

Version

1.1.0
Details on versioning

Versioning

Versions supported for Versioning: 1
1.1.0
Built-in Versioning [Preview]

Category

Regulatory Compliance
Microsoft Learn

Description

CMA_C1260 - Incorporate simulated contingency training

Cloud environments

AzureCloud = true
AzureUSGovernment = unknown
AzureChinaCloud = unknown

Available in AzUSGov

Unknown, no evidence if Policy definition is/not available in AzureUSGovernment

Additional metadata

Name/Id: CMA_C1260 / CMA_C1260
Category: Operational
Title: Incorporate simulated contingency training
Ownership: Customer
Description: The customer is responsible for facilitating effective response by personnel in crisis situations by incorporating simulated events into contingency training.
Requirements: The customer is responsible for implementing this recommendation.

Mode

All

Type

BuiltIn

Preview

False

Deprecated

False

Effect

Default
Manual
Allowed
Manual, Disabled

RBAC role(s)

none

Rule aliases

none

Rule resource types

IF (1)

Microsoft.Resources/subscriptions

Compliance

The following 8 compliance controls are associated with this Policy definition 'Incorporate simulated contingency training' (9c954fcf-6dd8-81f1-41b5-832ae5c62caf)

Control Domain	Control	Name	MetadataId	Category	Title	Owner	Requirements	Description	Info	Policy#
FedRAMP_High_R4	CP-3(1)	FedRAMP_High_R4_CP-3(1)	FedRAMP High CP-3 (1)	Contingency Planning	Simulated Events	Shared	n/a	The organization incorporates simulated events into contingency training to facilitate effective response by personnel in crisis situations.	link	1
hipaa	1311.12c2Organizational.3-12.c	hipaa-1311.12c2Organizational.3-12.c	1311.12c2Organizational.3-12.c	13 Education, Training and Awareness	1311.12c2Organizational.3-12.c 12.01 Information Security Aspects of Business Continuity Management	Shared	n/a	The organization’s employees are provided with crisis management awareness and training.		3
NIST_SP_800-53_R4	CP-3(1)	NIST_SP_800-53_R4_CP-3(1)	NIST SP 800-53 Rev. 4 CP-3 (1)	Contingency Planning	Simulated Events	Shared	n/a	The organization incorporates simulated events into contingency training to facilitate effective response by personnel in crisis situations.	link	1
NIST_SP_800-53_R5	CP-3(1)	NIST_SP_800-53_R5_CP-3(1)	NIST SP 800-53 Rev. 5 CP-3 (1)	Contingency Planning	Simulated Events	Shared	n/a	Incorporate simulated events into contingency training to facilitate effective response by personnel in crisis situations.	link	1
	op.cont.1 Impact analysis	op.cont.1 Impact analysis	404 not found				n/a	n/a		68
	op.cont.2 Continuity plan	op.cont.2 Continuity plan	404 not found				n/a	n/a		68
	op.cont.3 Periodic tests	op.cont.3 Periodic tests	404 not found				n/a	n/a		91
	op.cont.4 Alternative means	op.cont.4 Alternative means	404 not found				n/a	n/a		95

Initiatives usage

Initiative DisplayName	Initiative Id	Initiative Category	State	Type	polSet in AzUSGov
FedRAMP High	d5264498-16f4-418a-b659-fa7ef418175f	Regulatory Compliance	GA	BuiltIn	true
HITRUST/HIPAA	a169a624-5599-4385-a696-c8d643089fab	Regulatory Compliance	GA	BuiltIn	unknown
NIST SP 800-53 Rev. 4	cf25b9c1-bd23-4eb6-bd2c-f4f3ac644a5f	Regulatory Compliance	GA	BuiltIn	true
NIST SP 800-53 Rev. 5	179d1daa-458f-4e47-8086-2a68d0d6c38f	Regulatory Compliance	GA	BuiltIn	true
Spain ENS	175daf90-21e1-4fec-b745-7b4c909aa94c	Regulatory Compliance	GA	BuiltIn	unknown

History

Date/Time (UTC ymd) (i)	Change type	Change detail
2022-09-27 16:35:32	change	Minor (1.0.0 > 1.1.0)
2022-09-19 17:41:40	add	9c954fcf-6dd8-81f1-41b5-832ae5c62caf

JSON compare

compare mode: version left: version right:

JSON

api-version=2021-06-01
EPAC