NIST 800-53 · IR — Incident Response
IR-6 Incident reporting
Require personnel to report suspected incidents and report incident information to designated authorities within defined timeframes.
Mapped across 13 provisions
Equivalent and related requirements in other frameworks and regulations.
- HIPAAEquivalentOfficial mapping
Source: HIPAA Security Rule / NIST SP 800-53 Rev. 5
§164.404 Notification to individualsRéponse aux incidents et notification des violations
- ISO 27001EquivalentOfficial mapping
Source: NIST SP 800-53 Rev. 5 / ISO/IEC 27001
A.5.26 Response to information security incidentsRéponse aux incidents et notification des violations
- DORAPartialCuratedArt. 17 ICT-related incident management process
Réponse aux incidents et notification des violations
- DORAPartialCuratedArt. 19 Reporting of major ICT-related incidents
Réponse aux incidents et notification des violations
- GDPRRelatedCuratedArt. 33 Notification of a personal data breach to the supervisory authority
Réponse aux incidents et notification des violations
- GLBAPartialCurated§314.4(h) Incident response plan
Réponse aux incidents et notification des violations
- HIPAAPartialCurated§164.308(a)(6) Security incident procedures
Réponse aux incidents et notification des violations
- ISO 27001PartialCuratedA.5.24 Information security incident management planning and preparation
Réponse aux incidents et notification des violations
- LGPDRelatedCuratedArt. 48 Communication of a security incident
Réponse aux incidents et notification des violations
- NIS2PartialCuratedArt. 21(2)(b) Incident handling
Réponse aux incidents et notification des violations
- NIS2PartialCuratedArt. 23 Reporting obligations
Réponse aux incidents et notification des violations
- NIST 800-171PartialCurated3.6.1 Establish an incident-handling capability
Réponse aux incidents et notification des violations
- NIST 800-53PartialCuratedIR-4 Incident handling
Réponse aux incidents et notification des violations