>myctrl.tools
Preferences
Under active development Content is continuously updated and improved
Compare

AU-11Audit Record Retention

PBMM (P2)
Secret (P2)
Technical

>Control Description

(A) The organization retains audit records for organization-defined time period consistent with records retention policy to provide support for after-the-fact investigations of security incidents and to meet regulatory and organizational information retention requirements.

>Supplemental Guidance

al Guidance: Organizations retain audit records until it is determined that they are no longer needed for administrative, legal, audit, or other operational purposes. This includes, for example, retention and availability of audit records relative to legal requests, subpoenas, and law enforcement actions. Organizations develop standard categories of audit records relative to such types of actions and standard response processes for each type of action.

Related controls: AU-4, AU-5, AU-9, MP-6

>Tailoring Guidance

Applicable legal requirements may determine the required retention period.

Ask AI

Configure your API key to use AI features.