Skip to main content
Custom print
Download Original PDF

6.4 Defining the Remediation Plan

No: 562240000067 Date(g): 13/5/2019 | Date(h): 9/9/1440 Status: In-Force

Effective from 2019-05-13 - May 12 2019
To view other versions open the versions tab on the right

The White Team should create a remediation plan based on the recommendations provided by the Red Team and Blue Team. The White Team should:

  • analyze the observations and recommendations;
  • determine the improvements regarding the detection and response capabilities;
  • determine the associated risks and priorities.

The White Team shares the internally agreed and approved remediation plan with the Green Team and periodically track the remediation progress to ensure that the vulnerabilities identified are monitored and mitigated.

Note; The Green Team should not actively share nor distribute the red and blue team reports, nor the evaluation reports, nor the remediation plan unless the Member Organization provides written permission.

As stated earlier, the primary objective of this Framework is exercising, learning and sharing.

Note; The Green Team should not actively share nor distribute the red and blue team reports, nor the evaluation reports, nor the remediation plan unless the Member Organization provides written permission.
As stated earlier, the primary objective of this Framework is exercising, learning and sharing.