πΌ CC7.3-4 Assesses the Impact on Confidential Information
- Contextual name: πΌ CC7.3-4 Assesses the Impact on Confidential Information
- ID:
/frameworks/soc-2/cc7/03/04 - Located in: πΌ CC7.3 The entity evaluates security events to determine whether they could or have resulted in a failure of the entity to meet its objectives (security incidents) and, if so, takes actions to prevent or address such failures.
Descriptionβ
Detected security events are evaluated to determine whether they could or did result in the unauthorized disclosure or use of confidential information.
Similarβ
Sub Sectionsβ
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|
Policies (2)β
| Policy | Logic Count | Flags |
|---|---|---|
| π Google Cloud Audit Logging is not configured properly π’ | 1 | π’ x6 |
| π Google GCE Network DNS Policy Logging is not enabled π’ | 1 | π’ x6 |