💼 AU-7 Audit Record Reduction and Report Generation

• ID: /frameworks/nist-sp-800-53-r5/au/07

Description

Provide and implement an audit record reduction and report generation capability that: a. Supports on-demand audit record review, analysis, and reporting requirements and after-the-fact investigations of incidents; and b. Does not alter the original content or time ordering of audit records.

Similar

• Internal
  • ID: dec-c-b54d987a

Similar Sections (Give Policies To)

Section	Sub Sections	Internal Rules	Policies	Flags	Compliance
💼 FedRAMP High Security Controls → 💼 AU-7 Audit Record Reduction and Report Generation (M)(H)	1		18		no data
💼 NIST CSF v2.0 → 💼 RS.AN-03: Analysis is performed to establish what has taken place during an incident and the root cause of the incident			17		no data
💼 NIST CSF v2.0 → 💼 RS.AN-06: Actions performed during an investigation are recorded, and the records' integrity and provenance are preserved			18		no data
💼 NIST CSF v2.0 → 💼 RS.AN-07: Incident data and metadata are collected, and their integrity and provenance are preserved			18		no data

Sub Sections

Section	Sub Sections	Internal Rules	Policies	Flags	Compliance
💼 AU-7(1) Audit Record Reduction and Report Generation _ Automatic Processing		1	1		no data
💼 AU-7(2) Audit Record Reduction and Report Generation _ Automatic Sort and Search					no data

Policies (17)

Policy	Logic Count	Flags	Compliance
🛡️ Google Cloud Audit Logging is not configured properly🟢	1	🟢 x6	no data
🛡️ Google Cloud PostgreSQL Instance Log_error_verbosity Database Flag is not set to DEFAULT or stricter🟢	1	🟢 x6	no data
🛡️ Google Cloud PostgreSQL Instance Log_connections Database Flag is not set to On🟢	1	🟢 x6	no data
🛡️ Google Cloud PostgreSQL Instance Log_disconnections Database Flag is not set to On🟢	1	🟢 x6	no data
🛡️ Google Cloud PostgreSQL Instance Log_min_error_statement Database Flag is not set to Error or stricter🟢	1	🟢 x6	no data
🛡️ Google Cloud PostgreSQL Instance Log_min_messages Database Flag is not set at minimum to Warning🟢	1	🟢 x6	no data
🛡️ Google Cloud PostgreSQL Instance Log_statement Database Flag is not set appropriately🟢	1	🟢 x6	no data
🛡️ Google GCE Network DNS Policy Logging is not enabled🟢	1	🟢 x6	no data
🛡️ Google HTTP(S) Load Balancer Logging is not enabled🟢	1	🟢 x6	no data
🛡️ Google Logging Log Metric Filter and Alerts for Audit Configuration Changes do not exist🟢	1	🟢 x6	no data
🛡️ Google Logging Log Metric Filter and Alerts for Custom Role Changes do not exist🟢	1	🟢 x6	no data
🛡️ Google Logging Log Metric Filter and Alerts for Project Ownership Assignments Changes do not exist🟢	1	🟢 x6	no data
🛡️ Google Logging Log Metric Filter and Alerts for SQL Instance Configuration Changes do not exist🟢	1	🟢 x6	no data
🛡️ Google Logging Log Metric Filter and Alerts for VPC Network Changes do not exist🟢	1	🟢 x6	no data
🛡️ Google Logging Log Metric Filter and Alerts for VPC Network Firewall Rule Changes do not exist🟢	1	🟢 x6	no data
🛡️ Google Logging Log Metric Filter and Alerts for VPC Network Route Changes do not exist🟢	1	🟢 x6	no data
🛡️ Google Logging Log Sink for All Log Entries is not configured🟢	1	🟢 x6	no data