| Source | Azure Portal | ||||||||||||||||||||||
| Display name | Microsoft Managed Control 1372 - Incident Reporting | ||||||||||||||||||||||
| Id | 25b96717-c912-4c00-9143-4e487f411726 | ||||||||||||||||||||||
| Version | 1.0.0 Details on versioning |
||||||||||||||||||||||
| Versioning |
Versions supported for Versioning: 0 Built-in Versioning [Preview] |
||||||||||||||||||||||
| Category | Regulatory Compliance Microsoft Learn |
||||||||||||||||||||||
| Description | Microsoft implements this Incident Response control | ||||||||||||||||||||||
| Additional metadata |
Name/Id: ACF1372 / Microsoft Managed Control 1372 Category: Incident Response Title: Incident Reporting - Authority Ownership: Customer, Microsoft Description: The organization: Reports security incident information to Designated authorities (including US-CERT) as documented in the Microsoft Azure Incident Response Plan. Requirements: The Azure Security team coordinates with the ISSO to notify the appropriate government contacts including, as appropriate, authorizing officials, government customer agencies, US-CERT, and others, of an incident, incident updates, and resolution. Azure reports events involving federal data per the timelines and process are documented in the Incident Management SOP. The SOP identifies the types of security incidents that should be reported to the federal government, reporting timeframes, and specific processes for reporting and handling incidents involving federal customer data. Customers receive notification of security incidents involving the confirmed breach of their customer data via means Microsoft deems most appropriate. This is via email sent to the administrators and co-administrators of an impacted subscription or through updates to the Service Health Dashboard, or the customer’s Azure Management Portal within the times periods defined in the Incident Management SOP. |
||||||||||||||||||||||
| Mode | Indexed | ||||||||||||||||||||||
| Type | Static | ||||||||||||||||||||||
| Preview | False | ||||||||||||||||||||||
| Deprecated | False | ||||||||||||||||||||||
| Effect | Fixed audit |
||||||||||||||||||||||
| RBAC role(s) | none | ||||||||||||||||||||||
| Rule aliases | none | ||||||||||||||||||||||
| Rule resource types | IF (2) Microsoft.Resources/subscriptions Microsoft.Resources/subscriptions/resourceGroups |
||||||||||||||||||||||
| Compliance |
The following 1 compliance controls are associated with this Policy definition 'Microsoft Managed Control 1372 - Incident Reporting' (25b96717-c912-4c00-9143-4e487f411726)
| ||||||||||||||||||||||
| Initiatives usage |
|
||||||||||||||||||||||
| History | none | ||||||||||||||||||||||
| JSON compare | n/a | ||||||||||||||||||||||
| JSON |
|