2 templates mapped to NIST SP 800-61 Rev. 3.
Comprehensive policy for establishing a Security Orchestration, Automation and Response (SOAR) program including playbook governance, automation standards, human-in-the-loop requirements, integration management, and AI-enhanced capabilities aligned with 2025/2026 best practices and NIST CSF 2.0, CIS Controls v8, and SOC 2 requirements.
Comprehensive crisis communication policy establishing requirements for stakeholder communications during cybersecurity incidents and data breaches with 2025/2026 regulatory standards including SEC 8-K disclosure, DORA incident reporting, NIS2 notification, state breach laws, social media crisis management, and multi-channel communication strategies.