add: new priority-level taxonomy based on NCCIC Cyber Incident Scoring System

2018-03-15 15:40:30 +01:00 · 2018-03-15 15:40:30 +01:00 · 5e5fad2206
parent cee6c9dc96
commit 5e5fad2206
1 changed files with 57 additions and 0 deletions
--- a/priority-level/machinetag.json
+++ b/priority-level/machinetag.json
@ -0,0 +1,57 @@
+{
+  "predicates": [
+    {
+      "expanded": "Emergency",
+      "value": "emergency",
+      "description": "An Emergency priority incident poses an imminent threat to the provision of wide-scale critical infrastructure services, national government stability, or the lives of U.S. persons.",
+      "colour": "#000000",
+      "numerical_value": 100
+    },
+    {
+      "expanded": "Severe",
+      "value": "severe",
+      "description": "A Severe priority incident is likely to result in a significant impact to public health or safety, national security, economic security, foreign relations, or civil liberties.",
+      "colour": "#CC0033",
+      "numerical_value": 90
+    },
+    {
+      "expanded": "High",
+      "value": "high",
+      "description": "A High priority incident is likely to result in a demonstrable impact to public health or safety, national security, economic security, foreign relations, civil liberties, or public confidence.",
+      "colour": "#FFC000",
+      "numerical_value": 85
+    },
+    {
+      "expanded": "Medium",
+      "value": "medium",
+      "description": "A Medium priority incident may affect public health or safety, national security, economic security, foreign relations, civil liberties, or public confidence.",
+      "colour": "#FCEE21",
+      "numerical_value": 75
+    },
+    {
+      "expanded": "Low",
+      "value": "low",
+      "description": "A Low priority incident is unlikely to affect public health or safety, national security, economic security, foreign relations, civil liberties, or public confidence.",
+      "colour": "#339900",
+      "numerical_value": 50
+    },
+    {
+      "expanded": "Baseline - Minor",
+      "value": "baseline-minor",
+      "description": "A Baseline–Minor priority incident is an incident that is highly unlikely to affect public health or safety, national security, economic security, foreign relations, civil liberties, or public confidence. The potential for impact, however, exists and warrants additional scrutiny.",
+      "colour": "#006699",
+      "numerical_value": 25
+    },
+    {
+      "expanded": "Baseline - Negligible",
+      "value": "baseline-negligible",
+      "description": "A Baseline–Negligible priority incident is an incident that is highly unlikely to affect public health or safety, national security, economic security, foreign relations, civil liberties, or public confidence.",
+      "colour": "#FFFFFF",
+      "numerical_value": 0
+    }
+  ],
+  "version": 1,
+  "description": "After an incident is scored, it is assigned a priority level. The six levels listed below are aligned with NCCIC, DHS, and the CISS to help provide a common lexicon when discussing incidents. This priority assignment drives NCCIC urgency, pre-approved incident response offerings, reporting requirements, and recommendations for leadership escalation. Generally, incident priority distribution should follow a similar pattern to the graph below. Based on https://www.us-cert.gov/NCCIC-Cyber-Incident-Scoring-System.",
+  "namespace": "priority-level",
+  "exclusive": true
+}