last sync: 2024-Oct-04 17:51:30 UTC

Develop spillage response procedures | Regulatory Compliance - Documentation

Azure BuiltIn Policy definition

Source Azure Portal
Display name Develop spillage response procedures
Id bb048641-6017-7272-7772-a008f285a520
Version 1.1.0
Details on versioning
Versioning Versions supported for Versioning: 1
1.1.0
Built-in Versioning [Preview]
Category Regulatory Compliance
Microsoft Learn
Description CMA_0162 - Develop spillage response procedures
Additional metadata Name/Id: CMA_0162 / CMA_0162
Category: Documentation
Title: Develop spillage response procedures
Ownership: Customer
Description: Microsoft recommends that your organization develop, document, maintain, and distribute procedures to ensure that organizational personnel impacted by information spills can continue to carry out assigned tasks while contaminated systems are undergoing corrective actions. Your organization should consider creating and maintaining an overall security incident response plan. Incidents of data spillage may occur at any time. Therefore, you should be prepared to deal with these incidents immediately. It is recommended that you identify and document the steps that the organization follows in spillage scenarios to access, identify, and delete data. Your organization should consider implementing procedures to ensure that personnel impacted by information spills can continue to carry out assigned tasks while contaminated systems are undergoing corrective actions.
Requirements: The customer is responsible for implementing this recommendation.
Mode All
Type BuiltIn
Preview False
Deprecated False
Effect Default
Manual
Allowed
Manual, Disabled
RBAC role(s) none
Rule aliases none
Rule resource types IF (1)
Microsoft.Resources/subscriptions
Compliance
The following 4 compliance controls are associated with this Policy definition 'Develop spillage response procedures' (bb048641-6017-7272-7772-a008f285a520)
Control Domain Control Name MetadataId Category Title Owner Requirements Description Info Policy#
FedRAMP_High_R4 IR-9(3) FedRAMP_High_R4_IR-9(3) FedRAMP High IR-9 (3) Incident Response Post-Spill Operations Shared n/a The organization implements [Assignment: organization-defined procedures] to ensure that organizational personnel impacted by information spills can continue to carry out assigned tasks while contaminated systems are undergoing corrective actions. Supplemental Guidance: Correction actions for information systems contaminated due to information spillages may be very time-consuming. During those periods, personnel may not have access to the contaminated systems, which may potentially affect their ability to conduct organizational business. link 1
FedRAMP_Moderate_R4 IR-9(3) FedRAMP_Moderate_R4_IR-9(3) FedRAMP Moderate IR-9 (3) Incident Response Post-Spill Operations Shared n/a The organization implements [Assignment: organization-defined procedures] to ensure that organizational personnel impacted by information spills can continue to carry out assigned tasks while contaminated systems are undergoing corrective actions. Supplemental Guidance: Correction actions for information systems contaminated due to information spillages may be very time-consuming. During those periods, personnel may not have access to the contaminated systems, which may potentially affect their ability to conduct organizational business. link 1
NIST_SP_800-53_R4 IR-9(3) NIST_SP_800-53_R4_IR-9(3) NIST SP 800-53 Rev. 4 IR-9 (3) Incident Response Post-Spill Operations Shared n/a The organization implements [Assignment: organization-defined procedures] to ensure that organizational personnel impacted by information spills can continue to carry out assigned tasks while contaminated systems are undergoing corrective actions. Supplemental Guidance: Correction actions for information systems contaminated due to information spillages may be very time-consuming. During those periods, personnel may not have access to the contaminated systems, which may potentially affect their ability to conduct organizational business. link 1
NIST_SP_800-53_R5 IR-9(3) NIST_SP_800-53_R5_IR-9(3) NIST SP 800-53 Rev. 5 IR-9 (3) Incident Response Post-spill Operations Shared n/a Implement the following procedures to ensure that organizational personnel impacted by information spills can continue to carry out assigned tasks while contaminated systems are undergoing corrective actions: [Assignment: organization-defined procedures]. link 1
Initiatives usage
Initiative DisplayName Initiative Id Initiative Category State Type
FedRAMP High d5264498-16f4-418a-b659-fa7ef418175f Regulatory Compliance GA BuiltIn
FedRAMP Moderate e95f5a9f-57ad-4d03-bb0b-b1d16db93693 Regulatory Compliance GA BuiltIn
NIST SP 800-53 Rev. 4 cf25b9c1-bd23-4eb6-bd2c-f4f3ac644a5f Regulatory Compliance GA BuiltIn
NIST SP 800-53 Rev. 5 179d1daa-458f-4e47-8086-2a68d0d6c38f Regulatory Compliance GA BuiltIn
History
Date/Time (UTC ymd) (i) Change type Change detail
2022-09-27 16:35:32 change Minor (1.0.0 > 1.1.0)
2022-09-19 17:41:40 add bb048641-6017-7272-7772-a008f285a520
JSON compare
compare mode: version left: version right:
JSON
api-version=2021-06-01
EPAC