IR-3 Incident Response Testing

Description

Organizations test incident response capabilities to determine the overall effectiveness of the capabilities and to identify potential weaknesses or deficiencies. Incident response testing includes, for example, the use of checklists, walk-through or tabletop exercises, simulations (parallel/full interrupt), and comprehensive exercises. Incident response testing can also include a determination of the effects on organizational operations (e.g., reduction in mission capabilities), organizational assets, and individuals due to incident response.

Applicability

This control applies to the University Chief Information Security and Privacy Officer (CISPO) and or designees who are responsible for TAMU-CC University cybersecurity incident response.

Implementation

TAMU-CC shall test the incident response capability for the information system at least annually using tabletop exercise to determine the incident response effectiveness and documents the results.

Revision History

Last Updated: February 21, 2025

Previous Versions:

  • June 29, 2023
  • May 31, 2022
  • March 25, 2021
  • September 16, 2019

Chief Information Security and Privacy Officer

Submit a Ticket

News

See All News

Events

See All Events