CMMC 2.0 • LEVEL 2 • INCIDENT RESPONSE

IR.L2-3.6.3Incident Response Testing

Organizations test incident response capabilities to determine their effectiveness and identify potential weaknesses or deficiencies. Incident response testing includes the use of checklists, walk-through or tabletop exercises, and simulations. Incident response testing can include a determination of the effects of incident response on organizational operations, organizational assets, and individuals. Qualitative and quantitative data can help determine the effectiveness of incident response processes.

NIST 800-171 Mapping

NIST 800-53 Controls

IR-3

Assessment Objectives

  • the effectiveness of the incident response capability is tested annually or following significant system changes, personnel changes, or actual activation of the planCMMC/STIG.

Practitioner Notes

Practitioner commentary coming soon.

Related CMMC 2.0 Practices

IR.L2-3.6.1 Incident Handling IR.L2-3.6.2 Incident Monitoring, Reporting, and Response Assistance