Continuous Improvement Emergency Operations Situational awareness, ongoing monitoring, Coordination of computer incident response Definition of identity and access management, applications security, host and network security, information asset security, and physical access controls Internal Audit, governance, risk, compliance and supplier management; High-impact incidents; planning for incident response, business continuity, disaster recovery; tests, exercises, and drills; incident post mortems; investigations