πΌ CC4.2-3 Monitors Corrective Action
- Contextual name: πΌ CC4.2-3 Monitors Corrective Action
- ID:
/frameworks/soc-2/cc4/02/03 - Located in: πΌ CC4.2 The entity evaluates and communicates internal control deficiencies\ \ in a timely manner to those parties responsible for taking corrective action,\ \ including senior management and the board of directors, as appropriate.
Descriptionβ
Management tracks whether deficiencies are remedied on a timely basis.
Similarβ
- Internal
- ID:
dec-c-6105723a
- ID:
Sub Sectionsβ
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|
Policies (7)β
| Policy | Logic Count | Flags |
|---|---|---|
| π AWS Account Multi-Region CloudTrail is not enabled π’ | 1 | π’ x6 |
| π AWS CloudTrail Log File Validation is not enabled π’ | 1 | π’ x6 |
| π Azure PostgreSQL Flexible Server connection_throttle.enable Parameter is not set to ON π’ | 1 | π’ x6 |
| π Azure SQL Server Auditing is not enabled π’ | 1 | π’ x6 |
| π Azure SQL Server Auditing Retention is less than 90 days π’ | 1 | π’ x6 |
| π Azure Storage Blob Logging is not enabled for Read, Write, and Delete requests π’ | 1 | π’ x6 |
| π Azure Storage Queue Logging is not enabled for Read, Write, and Delete requests π’ | 1 | π’ x6 |
Internal Rulesβ
| Rule | Policies | Flags |
|---|---|---|
| βοΈ dec-x-36ced3d1 | 1 | |
| βοΈ dec-x-89d5ed7a | 1 | |
| βοΈ dec-x-611eaa35 | 1 | |
| βοΈ dec-x-850beea8 | 1 | |
| βοΈ dec-x-b1e1a494 | 1 | |
| βοΈ dec-x-db1b7a1b | 1 | |
| βοΈ dec-z-3f480eb5 | 1 |