CIS-8.1.17.5 — Assign Key Roles and ResponsibilitiesDomain: CIS Control 17 | Safeguard: CIS-8.1.17.5 | Asset Class: Users | Security Function: Respond | Source: CIS Controls v8.1.2 (March 2025) |
Implementation Groups: IG1IG2IG3 Assign key roles and responsibilities for incident response, including staff from legal, IT, information security, facilities, public relations, human resources, incident responders, analysts, and relevant third parties. Review annually, or when significant enterprise changes occur that could impact this Safeguard. |
Executive Summary (For Leadership and the Board)
CIS Safeguard CIS-8.1.17.5 sits inside Control 17 (Users / Respond) and requires assignment of key roles and responsibilities for incident response across legal, IT, security, facilities, PR, HR, and third parties. The Safeguard is most rigorously expected at IG3 and maps to NIST SP 800-53 Rev. 5 IA-2/4/5 and AC-2/3/5/6.