Awareness and Training (AT)

Awareness and Training (AT)

1. AT-1 – Security Awareness & Training Policy and Procedures

Program Frequency:



CONTINUOUS MONITORING STRATEGY

Click here to enter text.

2. AT-2 – Security Awareness

Program Frequency:



CONTINUOUS MONITORING STRATEGY

Click here to enter text.

AT-2(2) – Security Awareness: Insider Threat

Program Frequency:



CONTINUOUS MONITORING STRATEGY

Click here to enter text.

3. AT-3 – Role-Based Security Training

Program Frequency:



CONTINUOUS MONITORING STRATEGY

Click here to enter text.

AT-3(2) – Security Training: Physical Security Controls

Program Frequency:



CONTINUOUS MONITORING STRATEGY

Click here to enter text.

AT-3(4) – Security Training: Suspicious Communications and Anomalous System Behavior

Program Frequency:



CONTINUOUS MONITORING STRATEGY

Click here to enter text.

4. AT-4 – Security Training Records

Program Frequency:



1. 
   Retains individual training records for a minimum of five (5) years.
   

CONTINUOUS MONITORING STRATEGY

Click here to enter text.

4. Audit and Accountability (AU)

   1. AU-1 – Audit and Accountability Policy and Procedures

Program Frequency:



CONTINUOUS MONITORING STRATEGY

Click here to enter text.

2. AU-2 – Auditable Events

Program Frequency:



1. 
   Coordinates the security audit function with other organizational entities requiring audit-related information to enhance mutual support and to help guide the selection of auditable events
   

2. 
   Provides a rationale for why the auditable events are deemed to be adequate to support after-the-fact investigations of security incidents
   

d. Determines that the information system is capable of auditing the following events at minimum: Authentication events:

1. 
   Logons (Success/Failure)
   
2. 
   Logoffs (Success)
   

2. 
   Security Relevant File and Objects events:
   
   1. 
      Create (Success/Failure)
      
   2. 
      Access (Success/Failure)
      
   3. 
      Delete (Success/Failure)
      
   4. 
      Modify (Success/Failure)
      
   5. 
      Permission Modification (Success/Failure)
      
3. 
   Ownership Modification (Success/Failure)
   
4. 
   Export/Writes/downloads to devices/digital media (e.g., CD/DVD, USB, SD) (Success/Failure)
   
5. 
   Import/Uploads from devices/digital media (e.g., CD/DVD, USB, SD) (Success/Failure)
   
6. 
   User and Group Management events:
   
   1. 
      User add, delete, modify, disable, lock (Success/Failure)
      
   2. 
      Group/Role add, delete, modify (Success/Failure)
      
7. 
   Use of Privileged/Special Rights events:
   
   1. 
      Security or audit policy changes (Success/Failure)
      
   2. 
      Configuration changes (Success/Failure)
      
8. 
   Admin or root-level access (Success/Failure)
   
9. 
   Privilege/Role escalation (Success/Failure)
   
10. 
    Audit and security relevant log data accesses (Success/Failure)
    
11. 
    System reboot, restart and shutdown (Success/Failure)
    
12. 
    Print to a device (Success/Failure)
    

Click here to enter text.

CONTINUOUS MONITORING STRATEGY

Click here to enter text.

AU-2(3) – Auditable Events: Reviews and Updates

Program Frequency:



CONTINUOUS MONITORING STRATEGY

Click here to enter text.

3. AU-3 – Content of Audit Records

Program Frequency:



CONTINUOUS MONITORING STRATEGY

Click here to enter text.

AU-3(1) – Content of Audit Records: Additional Audit Information

Program Frequency:



CONTINUOUS MONITORING STRATEGY

Click here to enter text.

4. AU-4 – Audit Storage Capacity

Program Frequency:



CONTINUOUS MONITORING STRATEGY

Click here to enter text.

AU-4(1) – Audit Storage: Transfer to Alternate Storage

Program Frequency:



CONTINUOUS MONITORING STRATEGY

Click here to enter text.

5. AU-5 – Response to Audit Processing Failures

Program Frequency:



1. 
   Takes the following additional actions: at a minimum, record any audit processing failure in the audit log.
   

CONTINUOUS MONITORING STRATEGY

Click here to enter text.

AU-5(1) – Response to Audit Processing Failures: Audit Storage Capacity

Program Frequency:



CONTINUOUS MONITORING STRATEGY

Click here to enter text.

6. AU-6 – Audit Review, Analysis and Reporting

Program Frequency:



Reports findings to ISO, ISSM and FSO.

Click here to enter text.

CONTINUOUS MONITORING STRATEGY

Click here to enter text.

AU-6(1) – Audit Review, Analysis and Reporting: Process Integration

Program Frequency:



CONTINUOUS MONITORING STRATEGY

Click here to enter text.

AU-6(3) – Audit Review, Analysis, and Reporting: Correlate Audit Repositories - Standalone Overlay

Program Frequency:



CONTINUOUS MONITORING STRATEGY

Click here to enter text.

AU-6(4) – Audit Review, Analysis and Reporting: Central Review and Analysis

Program Frequency:



CONTINUOUS MONITORING STRATEGY

Click here to enter text.

AU-6(5) – Audit Review, Analysis, and Reporting: Scanning and Monitoring Capabilities

Program Frequency:



CONTINUOUS MONITORING STRATEGY

Click here to enter text.

AU-6(8) – Audit Review, Analysis and Reporting: Full Text Analysis of Privileged Commands

Program Frequency:



CONTINUOUS MONITORING STRATEGY

Click here to enter text.

AU-6(9) – Audit Review, Analysis and Reporting: Correlation with Information from Non-Technical Sources

Program Frequency:



CONTINUOUS MONITORING STRATEGY

Click here to enter text.

AU-6(10) – Audit Review, Analysis and Reporting: Audit Level Adjustment

Program Frequency:



CONTINUOUS MONITORING STRATEGY

Click here to enter text.

7. AU-7 – Audit Reduction and Report Generation

Program Frequency:



1. 
   Does not alter the original content or time ordering of audit records
   

CONTINUOUS MONITORING STRATEGY

Click here to enter text.

AU-7(1) – Audit Reduction and Report Generation: Automatic Processing

Program Frequency:



CONTINUOUS MONITORING STRATEGY

Click here to enter text.

8. AU-8 – Time Stamps

Program Frequency:



1. 
   Records time stamps for audit records that can be mapped to Coordinated Universal Time (UTC) or Greenwich Mean Time (GMT). Time stamps shall include date and time.
   

CONTINUOUS MONITORING STRATEGY

Click here to enter text.

AU-8(1) – Time Stamps: Synchronization with an Authoritative Time Source

Program Frequency:



CONTINUOUS MONITORING STRATEGY

Click here to enter text.

9. AU-9 – Protection of Audit Information

Program Frequency:



CONTINUOUS MONITORING STRATEGY

Click here to enter text.

AU-9(4) – Protection of Audit Information: Access by Subset of Privileged Users

Program Frequency:



CONTINUOUS MONITORING STRATEGY

Click here to enter text.

10. AU-11 – Audit Record Retention

Program Frequency:



CONTINUOUS MONITORING STRATEGY

Click here to enter text.

AU-11(1) – Audit Record Retention: Long-Term Retrieval Capability

Program Frequency:



CONTINUOUS MONITORING STRATEGY

Click here to enter text.

11. AU-12 – Audit Generation

Program Frequency:



1. 
   Allows designated personnel to select which auditable events are to be audited by specific components of the information system.
   

2. 
   Generates audit records for the events with the content defined in AU-2 with content defined in AU-3.
   

CONTINUOUS MONITORING STRATEGY

Click here to enter text.

AU-12(1) Audit Generation: System-Wide/Time Correlated Audit Trail

Program Frequency:



CONTINUOUS MONITORING STRATEGY

Click here to enter text.

AU-12(3) – Audit Generation: Changes by Authorized Individuals

Program Frequency:



CONTINUOUS MONITORING STRATEGY

Click here to enter text.

AU-16(1) – Cross-Organizational Auditing: Identity Preservation

Program Frequency:



CONTINUOUS MONITORING STRATEGY

Click here to enter text.

AU-16(2) – Cross-Organizational Auditing: Sharing of Audit Information

Program Frequency:



CONTINUOUS MONITORING STRATEGY

Click here to enter text.

5. 
   
   Directory: documents
   documents -> Concept stage
   documents -> Concept stage
   documents -> The great global switch-off
   documents -> Nonprofit grant application
   documents -> The Truth about the Rwandan Genocide
   documents -> Annual InStructional unit plan
   documents -> Chaos equipment included
   
   
   
   Download 0.65 Mb.
   
   Share with your friends: