HIPAA · Administrative safeguards
§164.308(a)(6) Security incident procedures
Implement policies and procedures to identify, respond to, mitigate and document security incidents.
Mapped across 13 provisions
Equivalent and related requirements in other frameworks and regulations.
- NIST 800-53EquivalentOfficial mapping
Source: HIPAA Security Rule / NIST SP 800-53 Rev. 5
IR-4 Incident handlingRéponse aux incidents et notification des violations
- DORAPartialCuratedArt. 17 ICT-related incident management process
Réponse aux incidents et notification des violations
- DORAPartialCuratedArt. 19 Reporting of major ICT-related incidents
Réponse aux incidents et notification des violations
- GDPRRelatedCuratedArt. 33 Notification of a personal data breach to the supervisory authority
Réponse aux incidents et notification des violations
- GLBAPartialCurated§314.4(h) Incident response plan
Réponse aux incidents et notification des violations
- HIPAARelatedCurated§164.404 Notification to individuals
Réponse aux incidents et notification des violations
- ISO 27001PartialCuratedA.5.24 Information security incident management planning and preparation
Réponse aux incidents et notification des violations
- ISO 27001PartialCuratedA.5.26 Response to information security incidents
Réponse aux incidents et notification des violations
- LGPDRelatedCuratedArt. 48 Communication of a security incident
Réponse aux incidents et notification des violations
- NIS2PartialCuratedArt. 21(2)(b) Incident handling
Réponse aux incidents et notification des violations
- NIS2PartialCuratedArt. 23 Reporting obligations
Réponse aux incidents et notification des violations
- NIST 800-171PartialCurated3.6.1 Establish an incident-handling capability
Réponse aux incidents et notification des violations
- NIST 800-53PartialCuratedIR-6 Incident reporting
Réponse aux incidents et notification des violations