💼 11.5.2 A change-detection mechanism (for example, file integrity monitoring tools) is deployed.

• Contextual name: 💼 11.5.2 A change-detection mechanism (for example, file integrity monitoring tools) is deployed.

• ID: /frameworks/pci-dss-v4.0.1/11/05/02

• Located in: 💼 11.5 Network intrusions and unexpected file changes are detected and responded to.

Description

As follows:

• To alert personnel to unauthorized modification (including changes, additions, and deletions) of critical files.
• To perform critical file comparisons at least once weekly.

Similar

• Sections
  • /frameworks/pci-dss-v4.0/11/05/02
  • /frameworks/aws-fsbp-v1.0.0/rds/20
  • /frameworks/aws-fsbp-v1.0.0/rds/21
  • /frameworks/aws-fsbp-v1.0.0/rds/22

Similar Sections (Take Policies From)

Section	Sub Sections	Internal Rules	Policies	Flags
💼 AWS Foundational Security Best Practices v1.0.0 → 💼 [RDS.20] Existing RDS event notification subscriptions should be configured for critical database instance events
💼 AWS Foundational Security Best Practices v1.0.0 → 💼 [RDS.21] An RDS event notifications subscription should be configured for critical database parameter group events
💼 AWS Foundational Security Best Practices v1.0.0 → 💼 [RDS.22] An RDS event notifications subscription should be configured for critical database security group events
💼 PCI DSS v4.0 → 💼 11.5.2 A change-detection mechanism (for example, file integrity monitoring tools) is deployed.			1

Similar Sections (Give Policies To)

Section	Sub Sections	Internal Rules	Policies	Flags
💼 PCI DSS v4.0 → 💼 11.5.2 A change-detection mechanism (for example, file integrity monitoring tools) is deployed.			1

Sub Sections

Section	Sub Sections	Internal Rules	Policies	Flags

Policies (1)

Policy	Logic Count	Flags
📝 AWS Account Config is not enabled in all regions 🟢	1	🟢 x6