RS.MA-02
Incident reports are triaged and validated
Implementation examples
- Ex1: Preliminarily review incident reports to confirm that they are cybersecurity-related and necessitate incident response activities
- Ex2: Apply criteria to estimate the severity of an incident
Mapped NIST 800-53 r5 controls (3)
All informative references (40)
- AI-SOC: AI-SOC-04
- AI-SOC: AI-SOC-06
- CCMv4.0: SEF-06
- CRI Profile v2.0: RS.MA-02
- CRI Profile v2.0: RS.MA-02.01
- CSF v1.1: RS.AN-1
- CSF v1.1: RS.AN-2
- CoP: D3
- Guardian-SDK: GS-PF-04
- ISO/IEC 27001:2022: Mandatory Clause: None
- ISO/IEC 27001:2022: Annex A Controls: 5.24
- ISO/IEC 27001:2022: Annex A Controls: 5.26
- ISO/IEC 27001:2022: Annex A Controls: 5.27
- ISO/IEC 27001:2022: Annex A Controls: 5.28
- ISO/IEC 27001:2022: Annex A Controls: 6.8
- NICE Framework: IO-WRL-005
- NICE Framework: IO-WRL-006
- NICE Framework: IO-WRL-007
- NICE Framework: PD-WRL-001
- NICE Framework: PD-WRL-002
- NICE Framework: PD-WRL-003
- NICE Framework: PD-WRL-005
- OWASP Top 10 LLM Applications: LLM01-2025
- OWASP Top 10 LLM Applications: LLM02-2025
- PCI DSS: 10.4.1
- PCI DSS: 10.2.1
- PCI DSS: 12.10.1
- PCI DSS: 12.10.4
- SCF: IRO-02
- SCF: IRO-04
- SDOS: SDOS-AU-01
- SDOS: SDOS-RS-01
- SP 800-171 Rev 3: 03.06.01
- SP 800-171 Rev 3: 03.06.02
- SP 800-53 Rev 5.1.1: IR-04
- SP 800-53 Rev 5.1.1: IR-05
- SP 800-53 Rev 5.1.1: IR-06
- SP 800-53 Rev 5.2.0: IR-04
- SP 800-53 Rev 5.2.0: IR-05
- SP 800-53 Rev 5.2.0: IR-06
Source: NIST Cybersecurity Framework 2.0 · CSF 2.0 → 800-53 mappings sourced from NIST Cybersecurity & Privacy Reference Tool (CPRT) · US government work — attribution requested per NIST Open License Terms. Direct CSF→CWE/CVE cross-references will be added in a Phase B LLM-authored mapping pass (not yet rendered).