Mitigation
Contain and mitigate effects of incidents.
9 of 9 frameworks cover this control
Framework Mappings
How Mitigation maps to each of the 6 cybersecurity frameworks tracked by ControlMap.
| Framework | Status | Control IDs |
|---|---|---|
| NIST CSF 2.0 | Covered | RS.MI-01 RS.MI-02 |
| ISO 27001 | Covered | A.5.26 A.8.7 |
| CIS v8 | Covered | CIS 17.4 |
| SOC 2 | Covered | CC7.4 CC7.5 |
| PCI DSS | Covered | 12.10.4 |
| CMMC | Covered | IR.L2-3.6.1 |
| 800-53 | Covered | IR-4 IR-5 |
| HIPAA | Covered | §164.308(a)(6)(ii) |
| GDPR | Covered | Art.33(3)(d) Art.34(2) |
About Mitigation
Mitigation is a cybersecurity control in the Respond domain. Contain and mitigate effects of incidents. Incident mitigation focuses on containing the spread of an attack and minimizing its impact on business operations through rapid, decisive actions. Containment strategies include network isolation of affected systems, disabling compromised accounts, blocking malicious IP addresses and domains, and deploying emergency patches or configuration changes. Organizations should pre-define containment playbooks for common incident types such as ransomware, data breaches, and account compromise, enabling faster response times and reducing the need for ad-hoc decision-making under pressure.
This control is recognized by 9 of the 6 major frameworks: NIST CSF 2.0, ISO 27001, CIS v8, SOC 2, PCI DSS, CMMC, 800-53, HIPAA, GDPR. It has full coverage across all ${FW_KEYS.length} frameworks.