tabletop Controls

Incident response exercises are conducted at least annually

Incidents are declared when adverse events meet the defined criteria

Improvements are identified from security tests and exercises

Incident response plans and cybersecurity plans are established, maintained, and improved

Security incidents are responded to and contained