| 💼 6.1 Logging and Monitoring | 5 | | 23 | | no data |
|  💼 6.1.1 Configuring Diagnostic Settings | 9 | | 9 | | no data |
|   💼 6.1.1.1 Ensure that a 'Diagnostic Setting' Exists for Subscription Activity Logs (Automated) | | | 1 | | no data |
|   💼 6.1.1.2 Ensure Diagnostic Setting Captures Appropriate Categories (Automated) | | | 1 | | no data |
|   💼 6.1.1.3 Ensure the Storage Account Containing the Container with Activity Logs is Encrypted with Customer-managed Key (CMK) (Manual) | | | 1 | | no data |
|   💼 6.1.1.4 Ensure that Logging for Azure Key Vault is 'Enabled' (Automated) | | | 1 | | no data |
|   💼 6.1.1.5 Ensure that Network Security Group Flow Logs are Captured and Sent to Log Analytics (Manual) | | | 1 | | no data |
|   💼 6.1.1.6 Ensure that Virtual Network Flow Logs are Captured and Sent to Log Analytics (Manual) | | | 1 | | no data |
|   💼 6.1.1.7 Ensure that a Microsoft Entra Diagnostic Setting Exists to Send Microsoft Graph Activity Logs to an Appropriate Destination (Manual) | | | 1 | | no data |
|   💼 6.1.1.8 Ensure that a Microsoft Entra Diagnostic Setting Exists to Send Microsoft Entra Activity Logs to an Appropriate Destination (Manual) | | | 1 | | no data |
|   💼 6.1.1.9 Ensure that Intune Logs are Captured and Sent to Log Analytics (Manual) | | | 1 | | no data |
|  💼 6.1.2 Monitoring Using Activity Log Alerts | 11 | | 11 | | no data |
|   💼 6.1.2.1 Ensure that Activity Log Alert Exists for Create Policy Assignment (Automated) | | | 1 | | no data |
|   💼 6.1.2.2 Ensure that Activity Log Alert exists for Delete Policy Assignment (Automated) | | | 1 | | no data |
|   💼 6.1.2.3 Ensure that Activity Log Alert Exists for Create or Update Network Security Group (Automated) | | | 1 | | no data |
|   💼 6.1.2.4 Ensure that Activity Log Alert Exists for Delete Network Security Group (Automated) | | | 1 | | no data |
|   💼 6.1.2.5 Ensure that Activity Log Alert Exists for Create or Update Security Solution (Automated) | | | 1 | | no data |
|   💼 6.1.2.6 Ensure that Activity Log Alert Exists for Delete Security Solution (Automated) | | | 1 | | no data |
|   💼 6.1.2.7 Ensure that Activity Log Alert Exists for Create or Update SQL Server Firewall Rule (Automated) | | | 1 | | no data |
|   💼 6.1.2.8 Ensure that Activity Log Alert Exists for Delete SQL Server Firewall Rule (Automated) | | | 1 | | no data |
|   💼 6.1.2.9 Ensure that Activity Log Alert Exists for Create or Update Public IP Address rule (Automated) | | | 1 | | no data |
|   💼 6.1.2.10 Ensure that Activity Log Alert Exists for Delete Public IP Address rule (Automated) | | | 1 | | no data |
|   💼 6.1.2.11 Ensure that an Activity Log Alert Exists for Service Health (Automated) | | | 1 | | no data |
|  💼 6.1.3 Configuring Application Insights | 1 | | 1 | | no data |
|   💼 6.1.3.1 Ensure Application Insights are Configured (Automated) | | | 1 | | no data |
|  💼 6.1.4 Ensure that Azure Monitor Resource Logging is Enabled for All Services that Support it (Manual) | | | 1 | | no data |
|  💼 6.1.5 Ensure Basic, Free, and Consumption SKUs are not used on Production artifacts requiring monitoring and SLA (Manual) | | | 1 | | no data |
| 💼 6.2 Ensure that Resource Locks are set for Mission-Critical Azure Resources (Manual) | | | 1 | | no data |