18 ncac 07j .0626          security incident response plan

A technology provider shall maintain a security incident response plan that:

(1)           addresses the capabilities required by the rules in this Section;

(2)           includes annual testing; and

(3)           is revised annually, as needed.

 

History Note:        Authority G.S. 10B-4; 10B-106; 10B-125(b); 10B-126; 10B-134.15; 10B-134.17; 10B-134.19; 10B-134.21; 10B-134.23;

Eff. July 1, 2025.