8.11: Conduct Audit Log Reviews

CSF v1.1 References:

PR.PT-1
DE.AE-2
RS.AN-1

PF v1.0 References:

CT.DM-P8

Group:

Previous Version:

Critical Security Controls Version 7.1:
6.7: Regularly Review Logs

Control Statement

Conduct reviews of audit logs to detect anomalies or abnormal events that could indicate a potential threat. Conduct reviews on a weekly, or more frequent, basis.

[csf.tools Note: For more information on the Critical Security Controls, visit the Center for Internet Security.]

Control Statement

Related Controls

NIST Special Publication 800-53 Revision 5

NIST Special Publication 800-171 Revision 2

NIST Special Publication 800-53 Revision 4