AzPolicyAdvertizer

last sync: 2025-Apr-25 19:39:43 UTC

Microsoft Managed Control 1711 - Security Functionality Verification | Regulatory Compliance - System and Information Integrity

Azure BuiltIn Policy definition

Source

Azure Portal

Display name

Microsoft Managed Control 1711 - Security Functionality Verification

b083a535-a66a-41ec-ba7f-f9498bf67cde

Version

1.0.1
Details on versioning

Versioning

Versions supported for Versioning: 0
Built-in Versioning [Preview]

Category

Regulatory Compliance
Microsoft Learn

Description

Microsoft implements this System and Information Integrity control

Cloud environments

AzureCloud = true
AzureUSGovernment = true
AzureChinaCloud = unknown

Available in AzUSGov

The Policy is available in AzureUSGovernment cloud. Version: '1.0.0'
Repository: Azure-Policy b083a535-a66a-41ec-ba7f-f9498bf67cde

Additional metadata

Name/Id: ACF1711 / Microsoft Managed Control 1711
Category: System and Information Integrity
Title: Security Function Verification - Response to Anomalies
Ownership: Customer, Microsoft
Description: The information system: initiates the Incident Response process; notify system administrators and security personnel when anomalies are discovered.
Requirements: The monitoring tools identified above generate alerts to service team personnel in the case of security functionality failure. Depending on the type of issue, Azure DevOps or IcM tickets are opened to track resolution of the alert following the incident management process.

Mode

Indexed

Type

Static

Preview

False

Deprecated

False

Effect

Fixed
audit

RBAC role(s)

none

Rule aliases

none

Rule resource types

IF (2)

Microsoft.Resources/subscriptions
Microsoft.Resources/subscriptions/resourceGroups

Compliance

The following 1 compliance controls are associated with this Policy definition 'Microsoft Managed Control 1711 - Security Functionality Verification' (b083a535-a66a-41ec-ba7f-f9498bf67cde)

Control Domain	Control	Name	MetadataId	Category	Title	Owner	Requirements	Description	Info	Policy#
NIS2	IR._Incident_Response_2	NIS2_IR._Incident_Response_2	NIS2_IR._Incident_Response_2	IR. Incident Response	Incident handling		n/a	Where essential or important entities become aware of a significant incident, they should be required to submit an early warning without undue delay and in any event within 24 hours. That early warning should be followed by an incident notification. The entities concerned should submit an incident notification without undue delay and in any event within 72 hours of becoming aware of the significant incident, with the aim, in particular, of updating information submitted through the early warning and indicating an initial assessment of the significant incident, including its severity and impact, as well as indicators of compromise, where available. A final report should be submitted not later than one month after the incident notification. The early warning should only include the information necessary to make the CSIRT, or where applicable the competent authority, aware of the significant incident and allow the entity concerned to seek assistance, if required. Such early warning, where applicable, should indicate whether the significant incident is suspected of being caused by unlawful or malicious acts, and whether it is likely to have a cross-border impact. Member States should ensure that the obligation to submit that early warning, or the subsequent incident notification, does not divert the notifying entity’s resources from activities related to incident handling that should be prioritised, in order to prevent incident reporting obligations from either diverting resources from significant incident response handling or otherwise compromising the entity’s efforts in that respect. 27.12.2022 EN Official Journal of the European Union L 333/99 In the event of an ongoing incident at the time of the submission of the final report, Member States should ensure that entities concerned provide a progress report at that time, and a final report within one month of their handling of the significant incident		34

Initiatives usage

Initiative DisplayName	Initiative Id	Initiative Category	State	Type	polSet in AzUSGov
[Preview]: NIS2	32ff9e30-4725-4ca7-ba3a-904a7721ee87	Regulatory Compliance	Preview	BuiltIn	unknown

History

Date/Time (UTC ymd) (i)	Change type	Change detail
2022-04-01 20:29:14	change	Patch (1.0.0 > 1.0.1)

JSON compare

compare mode: version left: version right:

JSON

api-version=2021-06-01
EPAC