detection
detection Controls
5 controls across 2 frameworks.
CISA CPG
NIST CSF
de-ae-3
Information is correlated from multiple sources
Detect / Adverse Event Analysis
high 6h
de-ae-5
Alert thresholds are established
Detect / Adverse Event Analysis
medium 4h
de-cm-1
Networks and network services are monitored to detect adverse events
Detect / Continuous Monitoring
high 6h
de-cm-9
Computing hardware and software, runtime environments, and their data are monitored to find potentially adverse events
Detect / Continuous Monitoring
critical 10h