Skip to main content

Repository → 💼 SOC 2 → 💼 CC7 System Operations → 💼 CC7.2 The entity monitors system components and the operation of those components for anomalies that are indicative of malicious acts, natural disasters, and errors affecting the entity's ability to meet its objectives; anomalies are analyzed to determine whether they represent security events.

💼 CC7.2-3 Implements Filters to Analyze Anomalies

  • ID: /frameworks/soc-2/cc7/02/03

Description

Management has implemented procedures to filter, summarize, and analyze anomalies to identify security events.

Similar

  • Internal
    • ID: dec-c-e2c2bc13

Sub Sections

SectionSub SectionsInternal RulesPoliciesFlagsCompliance

Policies (18)

PolicyLogic CountFlagsCompliance
🛡️ Azure Subscription Integration With Microsoft Defender For Cloud Apps is not enabled🟢1🟢 x6no data
🛡️ Azure Subscription Integration With Microsoft Defender For Endpoint is not enabled🟢1🟢 x6no data
🛡️ Azure Subscription Microsoft Defender For (Managed Instance) Azure SQL Databases is not set to On🟢1🟢 x6no data
🛡️ Azure Subscription Microsoft Defender For App Services is not set to On🟢1🟢 x6no data
🛡️ Azure Subscription Microsoft Defender For Containers is not set to On🟢1🟢 x6no data
🛡️ Azure Subscription Microsoft Defender For IoT Hub is not set to On🟢⚪🟢 x2, ⚪ x1no data
🛡️ Azure Subscription Microsoft Defender For Key Vault is not set to On🟢1🟢 x6no data
🛡️ Azure Subscription Microsoft Defender For Servers is not set to On🟢1🟢 x6no data
🛡️ Azure Subscription Microsoft Defender For SQL Servers On Machines is not set to On🟢1🟢 x6no data
🛡️ Azure Subscription Microsoft Defender For Storage is not set to On🟢1🟢 x6no data
🛡️ Google Cloud PostgreSQL Instance Log_error_verbosity Database Flag is not set to DEFAULT or stricter🟢1🟢 x6no data
🛡️ Google Cloud PostgreSQL Instance Log_connections Database Flag is not set to On🟢1🟢 x6no data
🛡️ Google Cloud PostgreSQL Instance Log_disconnections Database Flag is not set to On🟢1🟢 x6no data
🛡️ Google Cloud PostgreSQL Instance Log_min_error_statement Database Flag is not set to Error or stricter🟢1🟢 x6no data
🛡️ Google Cloud PostgreSQL Instance Log_min_messages Database Flag is not set at minimum to Warning🟢1🟢 x6no data
🛡️ Google Cloud PostgreSQL Instance Log_statement Database Flag is not set appropriately🟢1🟢 x6no data
🛡️ Google GCE Subnetwork Flow Logs are not enabled🟢1🟢 x6no data
🛡️ Microsoft Defender External Attack Surface Monitoring (EASM) is not enabled🟢⚪🟢 x2, ⚪ x1no data

Internal Rules

RulePoliciesFlags
✉️ dec-x-1a2f62791
✉️ dec-x-8a1ecfd01
✉️ dec-x-9f7d853f1
✉️ dec-x-52ac4ac01
✉️ dec-x-8535d1ff1
✉️ dec-x-a00b4ec91
✉️ dec-x-a04719771
✉️ dec-x-cff561fd3
✉️ dec-x-fafadacd1