SA.4.173 Design network and system security capabilities to leverage, integrate, and share indicators of compromise.

CMMC Practice SA.4.173: Design network and system security capabilities to leverage, integrate, and share indicators of compromise.

Links to Publicly Available Resources

CMMC CLARIFICATION (Ref CMMC – Appendix B)

Most cyber-defense solutions provide an API (Application Programming Interface) that allows an organization to automate updates to solutions for IoC blocking, hunting, or other mitigation. By automating the process, the organization will remove the likelihood of a human mistyping an entry, and it greatly reduces the time for insertion into the security solution as compared to manual entry.