SI-7(8)—Software, Firmware, And Information Integrity
Operational
>Control Description
SOFTWARE, FIRMWARE, AND INFORMATION INTEGRITY | AUDITING CAPABILITY FOR SIGNIFICANT EVENTS The information system, upon detection of a potential integrity violation, provides the capability to audit the event and initiates the following actions: [Selection (one or more): generates an audit record; alerts current user; alerts ⚙organization-defined personnel or roles; ⚙organization-defined other actions].
>Supplemental Guidance
Organizations select response actions based on types of software, specific software, or information for which there are potential integrity violations. Related controls: AU-2, AU-6, AU-12.
Ask AI
Configure your API key to use AI features.