compliance controls are associated with this Policy definition 'Review and update the events defined in AU-02' (a930f477-9dcb-2113-8aa7-45bb6fc90861)
Control Domain |
Control |
Name |
MetadataId |
Category |
Title |
Owner |
Requirements |
Description |
Info |
Policy# |
FedRAMP_High_R4 |
AU-2(3) |
FedRAMP_High_R4_AU-2(3) |
FedRAMP High AU-2 (3) |
Audit And Accountability |
Reviews And Updates |
Shared |
n/a |
The organization reviews and updates the audited events [Assignment: organization-defined frequency].
Supplemental Guidance: Over time, the events that organizations believe should be audited may change. Reviewing and updating the set of audited events periodically is necessary to ensure that the current set is still necessary and sufficient. |
link |
1 |
FedRAMP_Moderate_R4 |
AU-2(3) |
FedRAMP_Moderate_R4_AU-2(3) |
FedRAMP Moderate AU-2 (3) |
Audit And Accountability |
Reviews And Updates |
Shared |
n/a |
The organization reviews and updates the audited events [Assignment: organization-defined frequency].
Supplemental Guidance: Over time, the events that organizations believe should be audited may change. Reviewing and updating the set of audited events periodically is necessary to ensure that the current set is still necessary and sufficient. |
link |
1 |
hipaa |
1202.09aa1System.1-09.aa |
hipaa-1202.09aa1System.1-09.aa |
1202.09aa1System.1-09.aa |
12 Audit Logging & Monitoring |
1202.09aa1System.1-09.aa 09.10 Monitoring |
Shared |
n/a |
A secure audit record is created for all activities on the system (create, read, update, delete) involving covered information. |
|
5 |
hipaa |
1210.09aa3System.3-09.aa |
hipaa-1210.09aa3System.3-09.aa |
1210.09aa3System.3-09.aa |
12 Audit Logging & Monitoring |
1210.09aa3System.3-09.aa 09.10 Monitoring |
Shared |
n/a |
All disclosures of covered information within or outside of the organization are logged including type of disclosure, date/time of the event, recipient, and sender. |
|
11 |
hipaa |
1216.09ab3System.12-09.ab |
hipaa-1216.09ab3System.12-09.ab |
1216.09ab3System.12-09.ab |
12 Audit Logging & Monitoring |
1216.09ab3System.12-09.ab 09.10 Monitoring |
Shared |
n/a |
Automated systems are used to review monitoring activities of security systems (e.g., IPS/IDS) and system records on a daily basis, and identify and document anomalies. |
|
20 |
ISO27001-2013 |
A.12.4.1 |
ISO27001-2013_A.12.4.1 |
ISO 27001:2013 A.12.4.1 |
Operations Security |
Event Logging |
Shared |
n/a |
Event logs recording user activities, exceptions, faults and information security events shall be produced, kept and regularly reviewed. |
link |
53 |
NIST_SP_800-171_R2_3 |
.3.3 |
NIST_SP_800-171_R2_3.3.3 |
NIST SP 800-171 R2 3.3.3 |
Audit and Accountability |
Review and update logged events. |
Shared |
Microsoft and the customer share responsibilities for implementing this requirement. |
The intent of this requirement is to periodically re-evaluate which logged events will continue to be included in the list of events to be logged. The event types that are logged by organizations may change over time. Reviewing and updating the set of logged event types periodically is necessary to ensure that the current set remains necessary and sufficient. |
link |
1 |
NIST_SP_800-53_R4 |
AU-2(3) |
NIST_SP_800-53_R4_AU-2(3) |
NIST SP 800-53 Rev. 4 AU-2 (3) |
Audit And Accountability |
Reviews And Updates |
Shared |
n/a |
The organization reviews and updates the audited events [Assignment: organization-defined frequency].
Supplemental Guidance: Over time, the events that organizations believe should be audited may change. Reviewing and updating the set of audited events periodically is necessary to ensure that the current set is still necessary and sufficient. |
link |
1 |
|
op.exp.8 Recording of the activity |
op.exp.8 Recording of the activity |
404 not found |
|
|
|
n/a |
n/a |
|
67 |