Overview:
The organization allocates audit record storage capacity in accordance with [Assignment:
organization-defined audit record storage requirements].
Supplemental Guidance:
Organizations consider the types of auditing to be performed and the audit processing requirements when allocating audit storage capacity. Allocating sufficient audit storage capacity reduces the likelihood of such capacity being exceeded and resulting in the potential loss or reduction of auditing capability.
Related controls: AU-2, AU-5, AU-6, AU-7, AU-11, SI-4.
Action Items:
1) Ensure there is enough storage capacity to maintain the audit logs for a specified time period
Related Documents:
1) Audit and Accountability Policy
2) Logging and Monitoring Policy
Additional Guidance:
Moderate FedRAMP-Defined Assignment / Selection Parameters
none
Moderate Additional FedRAMP Requirements and Guidance
none
Article ID: 611
Created: September 29, 2022
Last Updated: September 29, 2022
Author: Matthew Burdick
Online URL: http://www.compliancewiki.org/article/fedramp-audit-storage-capacity-au-4-611.html