Compliance with this requirement is the responsibility of the PCF deployer.
Pivotal provides the following incident response support resources:
RSS feed of Pivotal vulnerability reports: https://pivotal.io/security/rss
Pivotal Product Vulnerability Reports, archived on the Pivotal Application Security Team website: https://pivotal.io/security
Pivotal Support website and assistance request system: https://support.pivotal.io
Pivotal Application Security Team email: security@pivotal.io
Incident response support resources provided by organizations include, for example, help desks, assistance groups, and access to forensics services, when required.
The organization provides an incident response support resource, integral to the organizational incident response capability that offers advice and assistance to users of the information system for the handling and reporting of security incidents.
