>myctrl.tools
Preferences
Under active development Content is continuously updated and improved
Compare

SI-4System Monitoring

>Control Description

a

Monitor the system to detect:

1.

Attacks and indicators of potential attacks in accordance with the following monitoring objectives: organization-defined monitoring objectives; and

2.

Unauthorized local, network, and remote connections;

b

Identify unauthorized use of the system through the following techniques and methods: organization-defined techniques and methods;

c

Invoke internal monitoring capabilities or deploy monitoring devices:

1.

Strategically within the system to collect organization-determined essential information; and

2.

At ad hoc locations within the system to track specific types of transactions of interest to the organization;

d

Analyze detected events and anomalies;

e

Adjust the level of system monitoring activity when there is a change in risk to organizational operations and assets, individuals, other organizations, or the Nation;

f

Obtain legal opinion regarding system monitoring activities; and

g

Provide organization-defined system monitoring information to organization-defined personnel or roles [Selection (one or more): as needed; organization-defined frequency].

>Related Controls

AC-2
AC-3
AC-4
AC-8
AC-17
AU-2
AU-6
AU-7
AU-9
AU-12
AU-13
AU-14
CA-7
CM-3
CM-6
CM-8
CM-11
IA-10
IR-4
MA-3
MA-4
PL-9
PM-12
RA-5
RA-10
SC-5
SC-7
SC-18
SC-26
SC-31
SC-35
SC-36
SC-37
SC-43
SI-3
SI-6
SI-7
SR-9
SR-10

Ask AI

Configure your API key to use AI features.