regulatory
regulatory Controls
2 controls across 1 framework.
NIST CSF
gv-oc-3
Legal, regulatory, and contractual requirements regarding cybersecurity, including privacy and civil liberties obligations, are understood and managed
Govern / Organizational Context
critical 8h
rs-co-2
Internal and external stakeholders are notified of incidents in a timely manner
Respond / Incident Response Reporting and Communication
high 4h