Commit 363af147 authored by René Benner's avatar René Benner

Update security-response-plan.md

parent fae3289e
......@@ -29,6 +29,11 @@ The development, implementation, and execution of a Security Response Plan (SRP)
1. Mitigation and Remediation Timelines
The SRP must include levels of response to identified vulnerabilities that define the expected timelines for repair based on severity and impact to consumer, brand, and company. These response guidelines should be carefully mapped to level of severity determined for the reported vulnerability.
1. Information Transfer
The SRP communication must outline applied services (Manual or Automatic scanning) but will not prize information. Confidential information regarding systems and impacted services or applications will only be distributed through secure channels and only after verification of the contact.
# Policy Compliance
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment