3 / 5

Evaluates Security Events

CC7 — System Operations · Not yet reviewed

Status

○ NOT STARTED ◑ IN PROGRESS ✓ IMPLEMENTED — NOT APPLICABLE

What this control requires

The entity evaluates security events to determine whether they could or have resulted in a failure of the entity to meet its objectives (security incidents) and, if so, takes actions to prevent or address such failures.

Details

Risk Level

— LOW MEDIUM HIGH

Control Owner

Next Review Date

Notes — what's been done, what's missing, any gaps