Control
Email Security – Response and Remediation
Control Description
Provides tools and processes to respond to email-based incidents, including quarantining, forensic analysis, and system recovery.
Industry Analyst Firm Terms
Forrester wave: managed detection and response
Industry Standard Terms
Incident response
Business Risk Contributing Factors
Incident escalation
Mitigation Method
Automated workflows
CCPA
1798.150(b) breach notification
GDPR
Article 33(1) notification of a personal data breach
NERC
Cip-008-6 r1 incident response planning
ISO/IEC 27001
A.16.1.1 responsibilities and procedures
SOX
Itgc – incident management
GLBA
501.15(a)(6) incident response
HIPAA
164.308(a)(6)(ii) response and reporting
PCI DSS
10.2.1 logging and monitoring
MITRE ATT&CK
T1070 indicator removal on host
CMMC
Ir.l2-3.6.1 incident response
FISMA
Ir-4 incident handling
NIST SP 800-53
Ir-4 incident handling
Source Context Data
Email metadata
Enforcement Point
Email gateway
Function:Detect & Respond
Yes
Function:Threat Protection
No
Function:Access Control
No
Solution Category
Email security
Cyber Events
Home Depot 2014
Business Risk
Business Interruption
Cyber Threats
Data exfiltration