https://www.hackerone.com/ en https://www.hackerone.com/node/2371 National Cybersecurity Framework h1_admin Mon, 07/29/2024 - 15:58 Jurisdiction Portugal Region Europe Requirement Recommended Organization National Cybersecurity Centre (CNCS) Provision 4.6.3 RS.AN-5 Applies to Public and private organizations Date April 2020 Description Processes are established to receive, analyze and respond to vulnerabilities disclosed to the organization from internal and external sources - The organization should have a formal process to receive the submission of vulnerabilities from internal or external sources (e.g.: internal tests, vulnerability reports, security researchers). Each submission should be analyzed, verified and follow the process for security incident handling, unless it is a false positive. https://www.cncs.gov.pt/docs/qnrcs-web-eng.pdf ]]> Mon, 29 Jul 2024 20:58:57 +0000 h1_admin 2371 at https://www.hackerone.com