๐ผ CC7.2-1 Implements Detection Policies, Procedures, and Tools
- Contextual name: ๐ผ CC7.2-1 Implements Detection Policies, Procedures, and Tools
- ID:
/frameworks/soc-2/cc7/02/01 - Located in: ๐ผ CC7.2 The entity monitors system components and the operation of those components for anomalies that are indicative of malicious acts, natural disasters, and errors affecting the entity's ability to meet its objectives; anomalies are analyzed to determine whether they represent security events.
Descriptionโ
Detection policies and procedures are defined and implemented, and detection tools are implemented on Infrastructure and software to identify anomalies in the operation or unusual activity on systems. Procedures may include (1) a defined governance process for security event detection and management that includes provision of resources; (2) use of intelligence sources to identify newly discovered threats and vulnerabilities; and (3) logging of unusual system activities.
Similarโ
- Internal
- ID:
dec-c-b18dc75d
- ID:
Sub Sectionsโ
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|