FedRAMP Topic

FG-05 Incident Response and Configuration Governance

Coordinate incident response with change and configuration control rigor.

Implementation Actions

Integrate incident workflows with emergency change controls.
Maintain secure baseline governance and drift response process.
Run post-incident and post-change retrospectives.

Evidence Examples

Incident playbooks and records
Configuration management plan
Post-event retrospectives

Suggested Metrics

Containment time
Change-induced incident rate

Navigation

Back to FedRAMP Topics NIST SP 800-53 Controls NIST CSF 2.0 Guidance FedRAMP Glossary Entry