>myctrl.tools
Preferences
Under active development Content is continuously updated and improved
Compare

10.7.1Additional requirement for service providers only: Failures of critical security control systems are detected, alerted, and addressed promptly, including but not limited to failure of the following critical security control systems: Network security controls IDS/IPS FIM Anti-malware solutions Physical access controls Logical access controls Audit logging mechanisms Segmentation controls (if used) Applicability Notes This requirement applies only when the entity being assessed is a service provider.

>Requirement Description

Additional requirement for service providers only: Failures of critical security control systems are detected, alerted, and addressed promptly, including but not limited to failure of the following critical security control systems: Network security controls IDS/IPS FIM Anti-malware solutions Physical access controls Logical access controls Audit logging mechanisms Segmentation controls (if used) Applicability Notes This requirement applies only when the entity being assessed is a service provider. This requirement will be superseded by Requirement 10.7.2 as of 31 March 2025.

>Cross-Framework Mappings

NIST CSF 2.0

via NIST OLIR Catalog
GV.OV-01
Compare
GV.OV-02
Compare
GV.RM-05
Compare
ID.IM-03
Compare

SCF

CFG-02.8
Compare
CPL-02
Compare
CPL-03
Compare
CPL-03.2
Compare
END-06.2
Compare
END-16
Compare
IRO-01
Compare
MON-01
Compare
MON-01.16
Compare
MON-01.4
Compare
RSK-06
Compare
RSK-06.1
Compare
SEA-01.1
Compare
SEA-04.1
Compare
TPM-11
Compare

Ask AI

Configure your API key to use AI features.