πΌ AU-6 Audit Record Review, Analysis, and Reporting
- Contextual name: πΌ AU-6 Audit Record Review, Analysis, and Reporting
- ID:
/frameworks/nist-sp-800-53-r5/au/06 - Located in: πΌ AU Audit And Accountability
Descriptionβ
a. Review and analyze system audit records [Assignment: organization-defined frequency] for indications of [Assignment: organization-defined inappropriate or unusual activity] and the potential impact of the inappropriate or unusual activity; b. Report findings to [Assignment: organization-defined personnel or roles]; and c. Adjust the level of audit record review, analysis, and reporting within the system when there is a change in risk based on law enforcement information, intelligence information, or other credible sources of information.
Similarβ
- Internal
- ID:
dec-c-3ce33089
- ID:
Similar Sections (Give Policies To)β
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| πΌ FedRAMP High Security Controls β πΌ AU-6 Audit Record Review, Analysis, and Reporting (L)(M)(H) | 6 | 21 | 26 | |
| πΌ FedRAMP Low Security Controls β πΌ AU-6 Audit Record Review, Analysis, and Reporting (L)(M)(H) | 23 | |||
| πΌ NIST CSF v2.0 β πΌ DE.AE-02: Potentially adverse events are analyzed to better understand associated activities | 26 | |||
| πΌ NIST CSF v2.0 β πΌ DE.AE-03: Information is correlated from multiple sources | 26 |