Skip to main content

💼 11.5.1 Intrusion-detection and/or intrusion-prevention techniques are used to detect and/or prevent intrusions into the network.

Contextual name: 💼 11.5.1 Intrusion-detection and/or intrusion-prevention techniques are used to detect and/or prevent intrusions into the network.
ID: /frameworks/pci-dss-v4.0.1/11/05/01
Located in: 💼 11.5 Network intrusions and unexpected file changes are detected and responded to.

Description

As follows:

All traffic is monitored at the perimeter of the CDE.
All traffic is monitored at critical points in the CDE.
Personnel are alerted to suspected compromises.
All intrusion-detection and prevention engines, baselines, and signatures are kept up to date.

Similar

Sections
- /frameworks/pci-dss-v4.0/11/05/01
- /frameworks/aws-fsbp-v1.0.0/guardduty/06
- /frameworks/aws-fsbp-v1.0.0/guardduty/07
- /frameworks/aws-fsbp-v1.0.0/guardduty/09
- /frameworks/aws-fsbp-v1.0.0/guardduty/10

Similar Sections (Take Policies From)

Section	Sub Sections	Internal Rules	Policies	Flags
💼 AWS Foundational Security Best Practices v1.0.0 → 💼 [GuardDuty.6] GuardDuty Lambda Protection should be enabled
💼 AWS Foundational Security Best Practices v1.0.0 → 💼 [GuardDuty.7] GuardDuty EKS Runtime Monitoring should be enabled
💼 AWS Foundational Security Best Practices v1.0.0 → 💼 [GuardDuty.9] GuardDuty RDS Protection should be enabled
💼 AWS Foundational Security Best Practices v1.0.0 → 💼 [GuardDuty.10] GuardDuty S3 Protection should be enabled
💼 PCI DSS v4.0 → 💼 11.5.1 Intrusion-detection and/or intrusion-prevention techniques are used to detect and/or prevent intrusions into the network.	1	8	8

Similar Sections (Give Policies To)

Section	Sub Sections	Internal Rules	Policies	Flags
💼 PCI DSS v4.0 → 💼 11.5.1 Intrusion-detection and/or intrusion-prevention techniques are used to detect and/or prevent intrusions into the network.	1	8	8

Sub Sections

Section	Sub Sections	Internal Rules	Policies	Flags
💼 11.5.1.1 Intrusion-detection and/or intrusion-prevention techniques detect, alert on/prevent, and address covert malware communication channels.			8

Policies (8)

Policy	Logic Count	Flags
📝 AWS VPC Flow Logs are not enabled 🟢	1	🟠 x1, 🟢 x5
📝 Azure Subscription Microsoft Defender For (Managed Instance) Azure SQL Databases is not set to On 🟢	1	🟢 x6
📝 Azure Subscription Microsoft Defender For App Services is not set to On 🟢	1	🟢 x6
📝 Azure Subscription Microsoft Defender For Containers is not set to On 🟢	1	🟢 x6
📝 Azure Subscription Microsoft Defender For Key Vault is not set to On 🟢	1	🟢 x6
📝 Azure Subscription Microsoft Defender For Servers is not set to On 🟢	1	🟢 x6
📝 Azure Subscription Microsoft Defender For SQL Servers On Machines is not set to On 🟢	1	🟢 x6
📝 Azure Subscription Microsoft Defender For Storage is not set to On 🟢	1	🟢 x6

Description
Similar
Similar Sections (Take Policies From)
Similar Sections (Give Policies To)
Sub Sections
Policies (8)