💼 AU-2 AUDIT EVENTS
- ID:
/frameworks/nist-sp-800-53-r4/au/02
Description
The organization: AU-2a. Determines that the information system is capable of auditing the following events: [Assignment: organization-defined auditable events]; AU-2b. Coordinates the security audit function with other organizational entities requiring audit-related information to enhance mutual support and to help guide the selection of auditable events; AU-2c. Provides a rationale for why the auditable events are deemed to be adequate to support after-the-fact investigations of security incidents; and AU-2d. Determines that the following events are to be audited within the information system: [Assignment: organization-defined audited events (the subset of the auditable events defined in AU-2 a.) along with the frequency of (or situation requiring) auditing for each identified event].
Similar
- Internal
- ID:
dec-c-7091dbbd
- ID:
Similar Sections (Give Policies To)
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|---|---|---|---|---|
| 💼 NIST CSF v1.1 → 💼 ID.SC-4: Suppliers and third-party partners are routinely assessed using audits, test results, or other forms of evaluations to confirm they are meeting their contractual obligations | 15 | 19 | no data | ||
| 💼 NIST CSF v1.1 → 💼 PR.PT-1: Audit/log records are determined, documented, implemented, and reviewed in accordance with policy | 16 | 33 | no data |
Sub Sections
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|---|---|---|---|---|
| 💼 AU-2 (1) COMPILATION OF AUDIT RECORDS FROM MULTIPLE SOURCES | no data | ||||
| 💼 AU-2 (2) SELECTION OF AUDIT EVENTS BY COMPONENT | no data | ||||
| 💼 AU-2 (3) REVIEWS AND UPDATES | no data | ||||
| 💼 AU-2 (4) PRIVILEGED FUNCTIONS | no data |
Policies (4)
| Policy | Logic Count | Flags | Compliance |
|---|---|---|---|
| 🛡️ AWS CloudFront Distribution Logging is not enabled🟢 | 1 | 🟢 x6 | no data |
| 🛡️ AWS CloudTrail S3 Bucket Access Logging is not enabled.🟢 | 1 | 🟢 x6 | no data |
| 🛡️ AWS S3 Bucket Server Access Logging is not enabled🟢 | 1 | 🟢 x6 | no data |
| 🛡️ AWS VPC Flow Logs are not enabled🟢 | 1 | 🟠 x1, 🟢 x5 | no data |
Internal Rules
| Rule | Policies | Flags |
|---|---|---|
| ✉️ dec-x-9c041667 | 1 | |
| ✉️ dec-x-a5c2acfe | 1 | |
| ✉️ dec-x-e0014333 | 2 |