OASB
v1.0
Controls/Monitoring & Response/10.4
L2 StandardManual verification

10.4 Incident Response Procedures

10. Monitoring & ResponseHow do we detect and respond?

Description

Agent-specific incident response procedures MUST be documented and tested.

Rationale

AI agent incidents require specialized response procedures different from traditional apps.

Audit Procedure

1. Check for documented IR procedures
2. Verify coverage of agent-specific scenarios
3. Check training records

Remediation

1. Document agent-specific IR procedures
2. Train incident responders
3. Conduct tabletop exercises

Framework Mappings

CIS Control 17NIST RS.RP-1
Previous10.3 Kill SwitchNext10.5 Recovery and Rollback