πΌ AC-2(12) Account Monitoring for Atypical Usage (M)(H)
- Contextual name: πΌ AC-2(12) Account Monitoring for Atypical Usage (M)(H)
- ID:
/frameworks/fedramp-high-security-controls/ac/02/12 - Located in: πΌ AC-2 Account Management (L)(M)(H)
Descriptionβ
(a) Monitor system accounts for [Assignment: organization-defined atypical usage]; and
(b) Report atypical usage of system accounts to [FedRAMP Assignment: at a minimum, the ISSO and/or similar role within the organization].
AC-2 (12) Additional FedRAMP Requirements and Guidance:
(a) Requirement: Required for privileged accounts.
(b) Requirement: Required for privileged accounts.
Similarβ
- Sections
/frameworks/nist-sp-800-53-r5/ac/02/12
- Internal
- ID:
dec-c-863a8f89
- ID:
Similar Sections (Take Policies From)β
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| πΌ NIST SP 800-53 Revision 5 β πΌ AC-2(12) Account Management _ Account Monitoring for Atypical Usage |
Similar Sections (Give Policies To)β
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| πΌ FedRAMP Moderate Security Controls β πΌ AC-2(12) Account Monitoring for Atypical Usage (M)(H) | 2 |
Sub Sectionsβ
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|
Policies (2)β
| Policy | Logic Count | Flags |
|---|---|---|
| π AWS Account IAM Access Analyzer is not enabled for all regions π’ | 1 | π’ x6 |
| π AWS Account Multi-Region CloudTrail is not enabled π’ | 1 | π’ x6 |
Internal Rulesβ
| Rule | Policies | Flags |
|---|---|---|
| βοΈ dec-x-ab7fc52e | 1 | |
| βοΈ dec-z-3f480eb5 | 1 |