IVS-01: Audit Logging / Intrusion Detection

PF v1.0 References:

Warning icon.

Control is withdrawn in the next version of this control set and incorporated into: LOG-02: Audit Logs Protection, LOG-04: Audit Logs Access and Accountability, LOG-09: Log Protection.

Control Statement

Higher levels of assurance are required for protection, retention, and lifecycle management of audit logs, adhering to applicable legal, statutory or regulatory compliance obligations and providing unique user access accountability to detect potentially suspicious network behaviors and/or file integrity anomalies, and to support forensic investigative capabilities in the event of a security breach.

[csf.tools Note: For more information on the Cloud Controls Matrix, visit the CSA Cloud Controls Matrix Homepage.]

Cloud Control Matrix is Copyright 2023 Cloud Security Alliance.