Skip to Content

FedRAMP - Process Integration AU-6(1)

614  Matthew Burdick September 29, 2022  Audit and Accountability (AU)

Overview:
The organization employs automated mechanisms to integrate audit review, analysis, and reporting processes to support organizational processes for investigation and response to suspicious activities.


Supplemental Guidance:
Organizational processes benefiting from integrated audit review, analysis, and reporting include, for example, incident response, continuous monitoring, contingency planning, and Inspector General audits.


Related controls: AU-12, PM-7.


Action Items:
1) Establish automated processes to review, analyze, and report on logs and monitoring events


Related Documents:
1) Audit and Accountability Policy

2) Logging and Monitoring Policy

3) Incident Response Policy


Additional Guidance:
Moderate FedRAMP-Defined Assignment / Selection Parameters
none


Moderate Additional FedRAMP Requirements and Guidance
none
Not Rated
Secure Code