breach-notification

breach-notification Controls

5 controls across 3 frameworks.

HIPAA

Implement policies and procedures to address security incidents involving ePHI

Administrative Safeguards / Security Incident Procedures

Cybersecurity requirements are integrated into contracts with suppliers

Govern / Cybersecurity Supply Chain Risk Management

The impact of the incident is understood

Respond / Incident Analysis

Internal and external stakeholders are notified of incidents in a timely manner

Respond / Incident Response Reporting and Communication

Security information is communicated to external parties

Security / Communication and Information