Skip to main content

💼 A.12.4.3 Administrator and operator logs

  • Contextual name: 💼 A.12.4.3 Administrator and operator logs
  • ID: /frameworks/iso-iec-27001-2013/12/04/03
  • Located in: 💼 A.12.4 Logging and monitoring

Description

System administrator and system operator activities shall be logged and the logs protected and regularly reviewed.

Similar

  • Internal
    • ID: dec-c-e9b1f602

Similar Sections (Give Policies To)

SectionSub SectionsInternal RulesPoliciesFlags
💼 NIST CSF v1.1 → 💼 DE.CM-3: Personnel activity is monitored to detect potential cybersecurity events2026
💼 NIST CSF v1.1 → 💼 PR.PT-1: Audit/log records are determined, documented, implemented, and reviewed in accordance with policy1632
💼 NIST CSF v1.1 → 💼 RS.AN-1: Notifications from detection systems are investigated1823

Sub Sections

SectionSub SectionsInternal RulesPoliciesFlags

Policies (8)

PolicyLogic CountFlags
📝 AWS CloudTrail Log File Validation is not enabled 🟢1🟢 x6
📝 Azure Diagnostic Setting for Azure Key Vault is not enabled 🟢🟢 x3
📝 Azure Subscription Activity Log Alert for Create or Update Network Security Group does not exist 🟢1🟢 x6
📝 Azure Subscription Activity Log Alert for Create or Update Security Solution does not exist 🟢1🟢 x6
📝 Azure Subscription Activity Log Alert for Create Policy Assignment does not exist 🟢1🟢 x6
📝 Azure Subscription Activity Log Alert for Delete Network Security Group does not exist 🟢1🟢 x6
📝 Azure Subscription Activity Log Alert for Delete Policy Assignment does not exist 🟢1🟢 x6
📝 Azure Subscription Activity Log Alert for Delete Security Solution does not exist 🟢1🟢 x6

Internal Rules

RulePoliciesFlags
✉️ dec-x-20c9ef831
✉️ dec-x-79579ed71
✉️ dec-x-9002886f1
✉️ dec-x-b1e1a4941
✉️ dec-x-b2ce0ca11
✉️ dec-x-c397d3ca2
✉️ dec-x-dc359e591