IR-04(02) Dynamic Reconfiguration
Include the following types of dynamic reconfiguration for ir-04.02_odp.02 as part of the incident response capability: ir-04.02_odp.01.
|ir-04.02_odp.01||types of dynamic reconfiguration|
Dynamic reconfiguration includes changes to router rules, access control lists, intrusion detection or prevention system parameters, and filter rules for guards or firewalls. Organizations may perform dynamic reconfiguration of systems to stop attacks, misdirect attackers, and isolate components of systems, thus limiting the extent of the damage from breaches or compromises. Organizations include specific time frames for achieving the reconfiguration of systems in the definition of the reconfiguration capability, considering the potential need for rapid response to effectively address cyber threats.
Related controls 3
- AC-02 Account Management L M H P
- AC-04 Information Flow Enforcement L M H P
- CM-02 Baseline Configuration L M H P