Skip to main content

💼 CC7.2-3 Implements Filters to Analyze Anomalies

Contextual name: 💼 CC7.2-3 Implements Filters to Analyze Anomalies
ID: /frameworks/soc-2/cc7/02/03
Located in: 💼 CC7.2 The entity monitors system components and the operation of those components for anomalies that are indicative of malicious acts, natural disasters, and errors affecting the entity's ability to meet its objectives; anomalies are analyzed to determine whether they represent security events.

Description

Management has implemented procedures to filter, summarize, and analyze anomalies to identify security events.

Similar

Internal
- ID: dec-c-e2c2bc13

Sub Sections

Section	Sub Sections	Internal Rules	Policies	Flags

Policies (18)

Policy	Logic Count	Flags
📝 Azure Subscription Integration With Microsoft Defender For Cloud Apps is not enabled 🟢	1	🟢 x6
📝 Azure Subscription Integration With Microsoft Defender For Endpoint is not enabled 🟢	1	🟢 x6
📝 Azure Subscription Microsoft Defender For (Managed Instance) Azure SQL Databases is not set to On 🟢	1	🟢 x6
📝 Azure Subscription Microsoft Defender For App Services is not set to On 🟢	1	🟢 x6
📝 Azure Subscription Microsoft Defender For Containers is not set to On 🟢	1	🟢 x6
📝 Azure Subscription Microsoft Defender For IoT Hub is not set to On 🟢		🟢 x3
📝 Azure Subscription Microsoft Defender For Key Vault is not set to On 🟢	1	🟢 x6
📝 Azure Subscription Microsoft Defender For Servers is not set to On 🟢	1	🟢 x6
📝 Azure Subscription Microsoft Defender For SQL Servers On Machines is not set to On 🟢	1	🟢 x6
📝 Azure Subscription Microsoft Defender For Storage is not set to On 🟢	1	🟢 x6
📝 Google Cloud PostgreSQL Instance `Log_error_verbosity` Database Flag is not set to DEFAULT or stricter 🟢	1	🟢 x6
📝 Google Cloud PostgreSQL Instance Log_connections Database Flag is not set to On 🟢	1	🟢 x6
📝 Google Cloud PostgreSQL Instance Log_disconnections Database Flag is not set to On 🟢	1	🟢 x6
📝 Google Cloud PostgreSQL Instance Log_min_error_statement Database Flag is not set to Error or stricter 🟢	1	🟢 x6
📝 Google Cloud PostgreSQL Instance Log_min_messages Database Flag is not set at minimum to Warning 🟢	1	🟢 x6
📝 Google Cloud PostgreSQL Instance Log_statement Database Flag is not set appropriately 🟢	1	🟢 x6
📝 Google GCE Subnetwork Flow Logs are not enabled 🟢	1	🟢 x6
📝 Microsoft Defender External Attack Surface Monitoring (EASM) is not enabled 🟢		🟢 x3

Internal Rules

Rule	Policies	Flags
✉️ dec-x-1a2f6279	1
✉️ dec-x-8a1ecfd0	1
✉️ dec-x-9f7d853f	1
✉️ dec-x-52ac4ac0	1
✉️ dec-x-8535d1ff	1
✉️ dec-x-a00b4ec9	1
✉️ dec-x-a0471977	1
✉️ dec-x-cff561fd	3
✉️ dec-x-fafadacd	1

Description
Similar
Sub Sections
Policies (18)
Internal Rules