>myctrl.tools
Preferences
Under active development Content is continuously updated and improved
Compare

AU-6(7)Audit Review, Analysis, And Reporting

PBMM (P2)
Secret (P2)
Technical

>Control Description

AUDIT REVIEW, ANALYSIS, AND REPORTING | PERMITTED ACTIONS The organization specifies the permitted actions for each [Selection (one or more): information system process; role; user] associated with the review, analysis, and reporting of audit information.

>Supplemental Guidance

Organizations specify permitted actions for information system processes, roles, and/or users associated with the review, analysis, and reporting of audit records through account management techniques. Specifying permitted actions on audit information is a way to enforce the principle of least privilege. Permitted actions are enforced by the information system and include, for example, read, write, execute, append, and delete.

Ask AI

Configure your API key to use AI features.