Guidance for NIST 800-171 Assessment & Compliance

Incident Response Policy and Procedures

Table E-8: Tailoring Actions for Incident Response Controls

NIST SP 800-53 MODERATE BASELINE SECURITY CONTROLS		TAILORING ACTION
IR-1	Incident Response Policy and Procedures	NFO
IR-2	Incident Response Training	CUI
IR-3	Incident Response Testing	CUI
IR-3(2)	INCIDENT RESPONSE TESTING \| COORDINATION WITH RELATED PLANS	CUI
IR-4	Incident Handling	CUI
IR-4(1)	INCIDENT HANDLING \| AUTOMATED INCIDENT HANDLING PROCESSES	NCO
IR-5	Incident Monitoring	CUI
IR-6	Incident Reporting	CUI
IR-6(1)	INCIDENT REPORTING \| AUTOMATED REPORTING	NCO
IR-7	Incident Response Assistance	CUI
IR-7(1)	INCIDENT RESPONSE ASSISTANCE \| AUTOMATION SUPPORT FOR AVAILABILITY OF INFORMATION / SUPPORT	NCO
IR-8	Incident Response Plan	NFO

Hosted by ABCI Consultants for Information Security Management Systems | Implementations, Training and Assessments for Compliance | (800) 644-2056