Overview:
The organization analyzes and correlates audit records across different repositories to gain organization-wide situational awareness.
Supplemental Guidance:
Organization-wide situational awareness includes awareness across all three tiers of risk management (i.e., organizational, mission/business process, and information system) and supports cross-organization awareness.
Related controls: AU-12, IR-4.
Action Items:
1) Ensure logs are aggregated and correlated for organizational-wide situational awareness
Related Documents:
1) Audit and Accountability Policy
2) Logging and Monitoring Policy
Additional Guidance:
Moderate FedRAMP-Defined Assignment / Selection Parameters
none
Moderate Additional FedRAMP Requirements and Guidance
none
Article ID: 615
Created: September 29, 2022
Last Updated: September 29, 2022
Author: Matthew Burdick
Online URL: http://www.compliancewiki.org/article/fedramp-correlate-audit-repositories-au-6-3-615.html