Skip to main content

💼 PR.PT-1: Audit/log records are determined, documented, implemented, and reviewed in accordance with policy

  • ID: /frameworks/nist-csf-v1.1/pr-pt/01

Description

Empty...

Similar

  • Sections
    • /frameworks/iso-iec-27001-2013/12/04/01
    • /frameworks/iso-iec-27001-2013/12/04/02
    • /frameworks/iso-iec-27001-2013/12/04/03
    • /frameworks/iso-iec-27001-2013/12/04/04
    • /frameworks/iso-iec-27001-2013/12/07/01
    • /frameworks/nist-sp-800-53-r4/au/01
    • /frameworks/nist-sp-800-53-r4/au/02
    • /frameworks/nist-sp-800-53-r4/au/03
    • /frameworks/nist-sp-800-53-r4/au/04
    • /frameworks/nist-sp-800-53-r4/au/05
    • /frameworks/nist-sp-800-53-r4/au/06
    • /frameworks/nist-sp-800-53-r4/au/07
    • /frameworks/nist-sp-800-53-r4/au/08
    • /frameworks/nist-sp-800-53-r4/au/09
    • /frameworks/nist-sp-800-53-r4/au/10
    • /frameworks/nist-sp-800-53-r4/au/11
    • /frameworks/nist-sp-800-53-r4/au/12
    • /frameworks/nist-sp-800-53-r4/au/13
    • /frameworks/nist-sp-800-53-r4/au/14
    • /frameworks/nist-sp-800-53-r4/au/15
    • /frameworks/nist-sp-800-53-r4/au/16
  • Internal
    • ID: dec-c-7e025a61

Similar Sections (Take Policies From)

SectionSub SectionsInternal RulesPoliciesFlagsCompliance
💼 ISO/IEC 27001:2013 → 💼 A.12.4.1 Event logging1518no data
💼 ISO/IEC 27001:2013 → 💼 A.12.4.2 Protection of log information13no data
💼 ISO/IEC 27001:2013 → 💼 A.12.4.3 Administrator and operator logs78no data
💼 ISO/IEC 27001:2013 → 💼 A.12.4.4 Clock synchronisationno data
💼 ISO/IEC 27001:2013 → 💼 A.12.7.1 Information systems audit controlsno data
💼 NIST SP 800-53 Revision 4 → 💼 AU-1 AUDIT AND ACCOUNTABILITY POLICY AND PROCEDURESno data
💼 NIST SP 800-53 Revision 4 → 💼 AU-2 AUDIT EVENTS434no data
💼 NIST SP 800-53 Revision 4 → 💼 AU-3 CONTENT OF AUDIT RECORDS2no data
💼 NIST SP 800-53 Revision 4 → 💼 AU-4 AUDIT STORAGE CAPACITY1no data
💼 NIST SP 800-53 Revision 4 → 💼 AU-5 RESPONSE TO AUDIT PROCESSING FAILURES4no data
💼 NIST SP 800-53 Revision 4 → 💼 AU-6 AUDIT REVIEW, ANALYSIS, AND REPORTING1022no data
💼 NIST SP 800-53 Revision 4 → 💼 AU-7 AUDIT REDUCTION AND REPORT GENERATION2no data
💼 NIST SP 800-53 Revision 4 → 💼 AU-8 TIME STAMPS2no data
💼 NIST SP 800-53 Revision 4 → 💼 AU-9 PROTECTION OF AUDIT INFORMATION6no data
💼 NIST SP 800-53 Revision 4 → 💼 AU-10 NON-REPUDIATION511no data
💼 NIST SP 800-53 Revision 4 → 💼 AU-11 AUDIT RECORD RETENTION12no data
💼 NIST SP 800-53 Revision 4 → 💼 AU-12 AUDIT GENERATION3no data
💼 NIST SP 800-53 Revision 4 → 💼 AU-13 MONITORING FOR INFORMATION DISCLOSURE2no data
💼 NIST SP 800-53 Revision 4 → 💼 AU-14 SESSION AUDIT3no data
💼 NIST SP 800-53 Revision 4 → 💼 AU-15 ALTERNATE AUDIT CAPABILITYno data
💼 NIST SP 800-53 Revision 4 → 💼 AU-16 CROSS-ORGANIZATIONAL AUDITING2no data

Sub Sections

SectionSub SectionsInternal RulesPoliciesFlagsCompliance

Policies (33)

PolicyLogic CountFlagsCompliance
🛡️ AWS CloudFront Distribution Logging is not enabled🟢1🟢 x6no data
🛡️ AWS CloudTrail Log File Validation is not enabled🟢1🟢 x6no data
🛡️ AWS CloudTrail S3 Bucket Access Logging is not enabled.🟢1🟢 x6no data
🛡️ AWS KMS Symmetric CMK Rotation is not enabled🟢1🟢 x6no data
🛡️ AWS S3 Bucket Server Access Logging is not enabled🟢1🟢 x6no data
🛡️ AWS VPC Flow Logs are not enabled🟢1🟠 x1, 🟢 x5no data
🛡️ Azure Diagnostic Setting for Azure Key Vault is not enabled🟢⚪🟢 x2, ⚪ x1no data
🛡️ Azure PostgreSQL Flexible Server log_checkpoints Parameter is not set to ON🟢1🟢 x6no data
🛡️ Azure PostgreSQL Flexible Server log_retention_days Parameter is less than 4 days🟢1🟢 x6no data
🛡️ Azure PostgreSQL Single Server log_connections Parameter is not set to ON🟢1🟢 x6no data
🛡️ Azure PostgreSQL Single Server log_disconnections Parameter is not set to ON🟢1🟢 x6no data
🛡️ Azure SQL Server Auditing Retention is less than 90 days🟢1🟢 x6no data
🛡️ Azure Storage Blob Logging is not enabled for Read, Write, and Delete requests🟢1🟢 x6no data
🛡️ Azure Storage Queue Logging is not enabled for Read, Write, and Delete requests🟢1🟢 x6no data
🛡️ Azure Subscription Activity Log Alert for Create or Update Network Security Group does not exist🟢1🟢 x6no data
🛡️ Azure Subscription Activity Log Alert for Create or Update Security Solution does not exist🟢1🟢 x6no data
🛡️ Azure Subscription Activity Log Alert for Create Policy Assignment does not exist🟢1🟢 x6no data
🛡️ Azure Subscription Activity Log Alert for Delete Network Security Group does not exist🟢1🟢 x6no data
🛡️ Azure Subscription Activity Log Alert for Delete Policy Assignment does not exist🟢1🟢 x6no data
🛡️ Azure Subscription Activity Log Alert for Delete Security Solution does not exist🟢1🟢 x6no data
🛡️ Google Cloud Audit Logging is not configured properly🟢1🟢 x6no data
🛡️ Google GCE Network DNS Policy Logging is not enabled🟢1🟢 x6no data
🛡️ Google HTTP(S) Load Balancer Logging is not enabled🟢1🟢 x6no data
🛡️ Google Logging Log Metric Filter and Alerts for Audit Configuration Changes do not exist🟢1🟢 x6no data
🛡️ Google Logging Log Metric Filter and Alerts for Custom Role Changes do not exist🟢1🟢 x6no data
🛡️ Google Logging Log Metric Filter and Alerts for Project Ownership Assignments Changes do not exist🟢1🟢 x6no data
🛡️ Google Logging Log Metric Filter and Alerts for SQL Instance Configuration Changes do not exist🟢1🟢 x6no data
🛡️ Google Logging Log Metric Filter and Alerts for VPC Network Changes do not exist🟢1🟢 x6no data
🛡️ Google Logging Log Metric Filter and Alerts for VPC Network Firewall Rule Changes do not exist🟢1🟢 x6no data
🛡️ Google Logging Log Metric Filter and Alerts for VPC Network Route Changes do not exist🟢1🟢 x6no data
🛡️ Google Logging Log Sink exports logs to a Storage Bucket without Bucket Lock🟢1🟢 x6no data
🛡️ Google Logging Log Sink for All Log Entries is not configured🟢1🟢 x6no data
🛡️ Google Storage Bucket with Log Sink does not have Versioning🟢1🟢 x6no data

Internal Rules

RulePoliciesFlags
✉️ dec-x-0c82d7751
✉️ dec-x-9b79d91f1
✉️ dec-x-9c0416671
✉️ dec-x-20c9ef831
✉️ dec-x-24bba4831
✉️ dec-x-89d5ed7a1
✉️ dec-x-611eaa351
✉️ dec-x-1518c16e1
✉️ dec-x-79579ed71
✉️ dec-x-9002886f1
✉️ dec-x-b1e1a4941
✉️ dec-x-b2ce0ca11
✉️ dec-x-c397d3ca2
✉️ dec-x-db1b7a1b1
✉️ dec-x-dc359e591
✉️ dec-x-e00143332