💼 PR.PT-1: Audit/log records are determined, documented, implemented, and reviewed in accordance with policy

Contextual name: 💼 PR.PT-1: Audit/log records are determined, documented, implemented, and reviewed in accordance with policy
ID: /frameworks/nist-csf-v1.1/pr-pt/01
Located in: 💼 Protective Technology (PR.PT)

Description

Empty...

Similar

Sections
- /frameworks/iso-iec-27001-2013/12/04/01
- /frameworks/iso-iec-27001-2013/12/04/02
- /frameworks/iso-iec-27001-2013/12/04/03
- /frameworks/iso-iec-27001-2013/12/04/04
- /frameworks/iso-iec-27001-2013/12/07/01
- /frameworks/nist-sp-800-53-r4/au/01
- /frameworks/nist-sp-800-53-r4/au/02
- /frameworks/nist-sp-800-53-r4/au/03
- /frameworks/nist-sp-800-53-r4/au/04
- /frameworks/nist-sp-800-53-r4/au/05
- /frameworks/nist-sp-800-53-r4/au/06
- /frameworks/nist-sp-800-53-r4/au/07
- /frameworks/nist-sp-800-53-r4/au/08
- /frameworks/nist-sp-800-53-r4/au/09
- /frameworks/nist-sp-800-53-r4/au/10
- /frameworks/nist-sp-800-53-r4/au/11
- /frameworks/nist-sp-800-53-r4/au/12
- /frameworks/nist-sp-800-53-r4/au/13
- /frameworks/nist-sp-800-53-r4/au/14
- /frameworks/nist-sp-800-53-r4/au/15
- /frameworks/nist-sp-800-53-r4/au/16
Internal
- ID: dec-c-7e025a61

Similar Sections (Take Policies From)

Section	Sub Sections	Internal Rules	Policies
💼 ISO/IEC 27001:2013 → 💼 A.12.4.1 Event logging		16	18
💼 ISO/IEC 27001:2013 → 💼 A.12.4.2 Protection of log information		2	2
💼 ISO/IEC 27001:2013 → 💼 A.12.4.3 Administrator and operator logs		8	9
💼 ISO/IEC 27001:2013 → 💼 A.12.4.4 Clock synchronisation
💼 ISO/IEC 27001:2013 → 💼 A.12.7.1 Information systems audit controls
💼 NIST SP 800-53 Revision 4 → 💼 AU-1 AUDIT AND ACCOUNTABILITY POLICY AND PROCEDURES
💼 NIST SP 800-53 Revision 4 → 💼 AU-2 AUDIT EVENTS	4	2	3
💼 NIST SP 800-53 Revision 4 → 💼 AU-3 CONTENT OF AUDIT RECORDS	2
💼 NIST SP 800-53 Revision 4 → 💼 AU-4 AUDIT STORAGE CAPACITY	1
💼 NIST SP 800-53 Revision 4 → 💼 AU-5 RESPONSE TO AUDIT PROCESSING FAILURES	4
💼 NIST SP 800-53 Revision 4 → 💼 AU-6 AUDIT REVIEW, ANALYSIS, AND REPORTING	10	2	2
💼 NIST SP 800-53 Revision 4 → 💼 AU-7 AUDIT REDUCTION AND REPORT GENERATION	2
💼 NIST SP 800-53 Revision 4 → 💼 AU-8 TIME STAMPS	2
💼 NIST SP 800-53 Revision 4 → 💼 AU-9 PROTECTION OF AUDIT INFORMATION	6
💼 NIST SP 800-53 Revision 4 → 💼 AU-10 NON-REPUDIATION	5	1	1
💼 NIST SP 800-53 Revision 4 → 💼 AU-11 AUDIT RECORD RETENTION	1	1	1
💼 NIST SP 800-53 Revision 4 → 💼 AU-12 AUDIT GENERATION	3
💼 NIST SP 800-53 Revision 4 → 💼 AU-13 MONITORING FOR INFORMATION DISCLOSURE	2
💼 NIST SP 800-53 Revision 4 → 💼 AU-14 SESSION AUDIT	3
💼 NIST SP 800-53 Revision 4 → 💼 AU-15 ALTERNATE AUDIT CAPABILITY
💼 NIST SP 800-53 Revision 4 → 💼 AU-16 CROSS-ORGANIZATIONAL AUDITING	2

Sub Sections

Section	Sub Sections	Internal Rules	Policies	Flags

Policies (20)

Policy	Logic Count	Flags
📝 AWS Account Multi-Region CloudTrail is not enabled 🟢	1	🟢 x6
📝 AWS CloudTrail Log File Validation is not enabled 🟢	1	🟢 x6
📝 AWS CloudTrail S3 Bucket Access Logging is not enabled. 🟢	1	🟢 x6
📝 AWS KMS Symmetric CMK Rotation is not enabled 🟢	1	🟢 x6
📝 AWS S3 Bucket Server Access Logging is not enabled 🟢	1	🟢 x6
📝 AWS VPC Flow Logs are not enabled 🟢	1	🟠 x1, 🟢 x5
📝 Azure Diagnostic Setting for Azure Key Vault is not enabled 🟢		🟢 x3
📝 Azure PostgreSQL Flexible Server log_checkpoints Parameter is not set to ON 🟢	1	🟢 x6
📝 Azure PostgreSQL Flexible Server log_retention_days Parameter is less than 4 days 🟢	1	🟢 x6
📝 Azure PostgreSQL Single Server log_connections Parameter is not set to ON 🟢	1	🟢 x6
📝 Azure PostgreSQL Single Server log_disconnections Parameter is not set to ON 🟢	1	🟢 x6
📝 Azure SQL Server Auditing Retention is less than 90 days 🟢	1	🟢 x6
📝 Azure Storage Blob Logging is not enabled for Read, Write, and Delete requests 🟢	1	🟢 x6
📝 Azure Storage Queue Logging is not enabled for Read, Write, and Delete requests 🟢	1	🟢 x6
📝 Azure Subscription Activity Log Alert for Create or Update Network Security Group does not exist 🟢	1	🟢 x6
📝 Azure Subscription Activity Log Alert for Create or Update Security Solution does not exist 🟢	1	🟢 x6
📝 Azure Subscription Activity Log Alert for Create Policy Assignment does not exist 🟢	1	🟢 x6
📝 Azure Subscription Activity Log Alert for Delete Network Security Group does not exist 🟢	1	🟢 x6
📝 Azure Subscription Activity Log Alert for Delete Policy Assignment does not exist 🟢	1	🟢 x6
📝 Azure Subscription Activity Log Alert for Delete Security Solution does not exist 🟢	1	🟢 x6

Internal Rules

Rule	Policies	Flags
✉️ dec-x-0c82d775	1
✉️ dec-x-9b79d91f	1
✉️ dec-x-9c041667	1
✉️ dec-x-20c9ef83	1
✉️ dec-x-24bba483	1
✉️ dec-x-89d5ed7a	1
✉️ dec-x-611eaa35	1
✉️ dec-x-1518c16e	1
✉️ dec-x-79579ed7	1
✉️ dec-x-9002886f	1
✉️ dec-x-b1e1a494	1
✉️ dec-x-b2ce0ca1	1
✉️ dec-x-c397d3ca	2
✉️ dec-x-db1b7a1b	1
✉️ dec-x-dc359e59	1
✉️ dec-x-e0014333	2
✉️ dec-z-3f480eb5	1

Description​

Similar​

Similar Sections (Take Policies From)​

Sub Sections​

Policies (20)​

Internal Rules​

Description

Similar

Similar Sections (Take Policies From)

Sub Sections

Policies (20)

Internal Rules