💼 AU-1 Policy and Procedures (L)(M)(H)
- Contextual name: 💼 AU-1 Policy and Procedures (L)(M)(H)
- ID:
/frameworks/fedramp-low-security-controls/au/01 - Located in: 💼 Audit and Accountability
Description​
a. Develop, document, and disseminate to [Assignment: organization-defined personnel or roles]:
-
[Selection (one-or-more): organization-level; mission/business process-level; system-level] audit and accountability policy that:
(a) Addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance; and
(b) Is consistent with applicable laws, executive orders, directives, regulations, policies, standards, and guidelines; and
-
Procedures to facilitate the implementation of the audit and accountability policy and the associated audit and accountability controls;
b. Designate an [Assignment: organization-defined official] to manage the development, documentation, and dissemination of the audit and accountability policy and procedures; and
c. Review and update the current audit and accountability:
-
Policy [FedRAMP Assignment: at least every three (3) years] and following [Assignment: organization-defined events]; and
-
Procedures [FedRAMP Assignment: at least annually] and following [FedRAMP Assignment: significant changes].
Similar​
- Sections
/frameworks/nist-sp-800-53-r5/au/01/frameworks/fedramp-high-security-controls/au/01
- Internal
- ID:
dec-c-978f635e
- ID:
Similar Sections (Take Policies From)​
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| 💼 FedRAMP High Security Controls → 💼 AU-1 Policy and Procedures (L)(M)(H) | ||||
| 💼 NIST SP 800-53 Revision 5 → 💼 AU-1 Policy and Procedures |
Sub Sections​
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|