ISO 27001 · A.5 Organizational
A.5.24 Information security incident management planning and preparation
Plan and prepare for managing information security incidents by defining processes, roles and responsibilities.
Mapped across 13 provisions
Equivalent and related requirements in other frameworks and regulations.
- NIST 800-53PartialOfficial mapping
Source: NIST SP 800-53 Rev. 5 / ISO/IEC 27001
IR-4 Incident handlingRéponse aux incidents et notification des violations
- DORAPartialCuratedArt. 17 ICT-related incident management process
Réponse aux incidents et notification des violations
- DORAPartialCuratedArt. 19 Reporting of major ICT-related incidents
Réponse aux incidents et notification des violations
- GDPRRelatedCuratedArt. 33 Notification of a personal data breach to the supervisory authority
Réponse aux incidents et notification des violations
- GLBAPartialCurated§314.4(h) Incident response plan
Réponse aux incidents et notification des violations
- HIPAAPartialCurated§164.308(a)(6) Security incident procedures
Réponse aux incidents et notification des violations
- HIPAARelatedCurated§164.404 Notification to individuals
Réponse aux incidents et notification des violations
- ISO 27001PartialCuratedA.5.26 Response to information security incidents
Réponse aux incidents et notification des violations
- LGPDRelatedCuratedArt. 48 Communication of a security incident
Réponse aux incidents et notification des violations
- NIS2PartialCuratedArt. 21(2)(b) Incident handling
Réponse aux incidents et notification des violations
- NIS2PartialCuratedArt. 23 Reporting obligations
Réponse aux incidents et notification des violations
- NIST 800-171PartialCurated3.6.1 Establish an incident-handling capability
Réponse aux incidents et notification des violations
- NIST 800-53PartialCuratedIR-6 Incident reporting
Réponse aux incidents et notification des violations