💼 AU-1 AUDIT AND ACCOUNTABILITY POLICY AND PROCEDURES
- ID:
/frameworks/nist-sp-800-53-r4/au/01
Stats​
not available
Description​
The organization: AU-1a. Develops, documents, and disseminates to [Assignment: organization-defined personnel or roles]: AU-1a.1. An audit and accountability policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance; and AU-1a.2. Procedures to facilitate the implementation of the audit and accountability policy and associated audit and accountability controls; and AU-1b. Reviews and updates the current: AU-1b.1. Audit and accountability policy [Assignment: organization-defined frequency]; and AU-1b.2. Audit and accountability procedures [Assignment: organization-defined frequency].
Similar​
- Internal
- ID:
dec-c-b9f6a421
- ID:
Similar Sections (Give Policies To)​
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|---|---|---|---|---|
| 💼 NIST CSF v1.1 → 💼 ID.GV-1: Organizational cybersecurity policy is established and communicated | no data | ||||
| 💼 NIST CSF v1.1 → 💼 ID.GV-3: Legal and regulatory requirements regarding cybersecurity, including privacy and civil liberties obligations, are understood and managed | 1 | 4 | no data | ||
| 💼 NIST CSF v1.1 → 💼 PR.PT-1: Audit/log records are determined, documented, implemented, and reviewed in accordance with policy | 17 | 33 | no data |
Sub Sections​
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|