机构名称:
¥ 1.0
CSP/3PAO Service Provider ● Protects incident information commensurate with the impact level of the cloud service ● Maintains a satisfactory risk management program for the cloud service in accordance with FedRAMP guidelines ● Complies with incident response guidance and requirements ● Maintains a list of all current customers and the proper communication channels with all AOs and 3PAOs ● Notifies affected customers of information security incidents ● Notifies CISA of information security根据需要的事件(请参阅CSP一般报告过程部分),并在FedRamp上提供CISA跟踪号码,网址为FedRamp_security@gsa.gov(以及所有适用的利益相关者)的信息安全事件(以及所有适用的利益相关者),此后更新,此后提供CISA的状态更新。利益相关者),包括机构AO或AO代表,
FedRamp事件通信程序
主要关键词
相关文件推荐
