What does M-06-19 PII Reporting require?

Enhance your preparation for the Federal IT Security Professional Test. Use quizzes, flashcards, and detailed explanations to ensure success. Stay ahead in the field of IT Security!

Multiple Choice

What does M-06-19 PII Reporting require?

Explanation:
Rapid notification of PII incidents to US-CERT is what M-06-19 requires. When a federal agency discovers a potential PII data-breach event, it must report that event to US-CERT within one hour of discovery so incident responders can begin containment, assessment, and coordination. This one-hour deadline is meant to speed up response, limit exposure, and provide timely government-wide visibility and guidance. The requirement focuses on potential PII breach events, not routine inventories or encryption mandates, so the other options don’t capture what M-06-19 mandates.

Rapid notification of PII incidents to US-CERT is what M-06-19 requires. When a federal agency discovers a potential PII data-breach event, it must report that event to US-CERT within one hour of discovery so incident responders can begin containment, assessment, and coordination. This one-hour deadline is meant to speed up response, limit exposure, and provide timely government-wide visibility and guidance. The requirement focuses on potential PII breach events, not routine inventories or encryption mandates, so the other options don’t capture what M-06-19 mandates.

More Multiple Choice Questions
Subscribe

Get the latest from Passetra

You can unsubscribe at any time. Read our privacy policy