← Back to catalog
IR-4(5)
Automatic Disabling of System
Incident Response (IR)
Baselines
Low · Not includedModerate · Not includedHigh · Not included
Description
Implement a configurable capability to automatically disable the system if [assignment] are detected.
Discussion
Organizations consider whether the capability to automatically disable the system conflicts with continuity of operations requirements specified as part of [CP-2](#cp-2) or [IR-4(3)](#ir-4.3) . Security violations include cyber-attacks that have compromised the integrity of the system or exfiltrated organizational information and serious errors in software programs that could adversely impact organizational missions or functions or jeopardize the safety of individuals.
Implementation guidance
No content available.
CSF 2.0 crosswalk
No CSF mappings exist for this control.