4.0 Reporting and Communication Flashcards
1
Q
Vulnerabilities
A
2
Q
Affected hosts
A
3
Q
Risk score
A
4
Q
Mitigation
A
5
Q
Recurrence
A
6
Q
Prioritization
A
7
Q
Compliance reports
A
8
Q
Action plans
A
9
Q
Configuration management
A
10
Q
Patching
A
11
Q
Compensating controls
A
12
Q
Awareness, education, and training
A
13
Q
Memorandum of understanding (MOU)
A
14
Q
Service-level agreement (SLA)
A
15
Q
Organizational governance
A
16
Q
Business process interruption
A
17
Q
Degrading functionality
A
18
Q
Legacy systems
A
19
Q
Proprietary systems
A
20
Q
Metric and key performance indicators (KPIs)
A
21
Q
Trends
A
22
Q
Top 10
A
23
Q
Critical vulnerabilities and zero-days
A
24
Q
SLOs
A
25
Stakeholder identification and communication
26
Incident declaration and escalation
27
Executive summary
28
Who, what, when, where, and why
29
Recommendations
30
Timeline
31
Impact
32
Scope
33
Evidence
34
Legal
35
Public relations
Customer communication
Media
36
Regulatory reporting
37
Law enforcement
38
Root cause analysis
39
Lessons learned
40
Metrics and KPIs
41
Mean time to detect
42
Mean time to respond
43
Mean time to remediate
44
Alert volume
