IAM-01: Audit Tools Access

Control Family:

Identity & Access Management

CSF v1.1 References:

PR.AC-1
DE.CM-1
DE.CM-3

PF v1.0 References:

PR.AC-P1

Threats Addressed:

Tampering
Repudiation

Control Statement

Access to, and use of, audit tools that interact with the organization’s information systems shall be appropriately segregated and access restricted to prevent inappropriate disclosure and tampering of log data.

Control Statement

Related Controls

NIST Special Publication 800-53 Revision 5

NIST Special Publication 800-53 Revision 4