CMMC readiness · NIST 800-171 alignment · DFARS support Mon–Fri · 0800–1800 ET
Controls / Audit and Accountability
AU

Audit and Accountability

Creates and protects system audit logs to enable monitoring, analysis, investigation, and reporting of unlawful or unauthorized system activity.

Family stats
Controls
9
Objectives
29
L1
0
L2 only
9
9 controls in this family
All Level 1 Level 2 only
3.3.1
Create and retain system audit logs and records to the extent needed to enable the monitoring,...
AU.L2-3.3.1 · 6 objectives
L2
3.3.2
Ensure that the actions of individual system users can be uniquely traced to those users so they...
AU.L2-3.3.2 · 2 objectives
L2
3.3.3
Review and update logged events.
AU.L2-3.3.3 · 3 objectives
L2
3.3.4
Alert in the event of an audit logging process failure.
AU.L2-3.3.4 · 3 objectives
L2
3.3.5
Correlate audit record review, analysis, and reporting processes for investigation and response to...
AU.L2-3.3.5 · 2 objectives
L2
3.3.6
Provide audit record reduction and report generation to support on-demand analysis and reporting.
AU.L2-3.3.6 · 2 objectives
L2
3.3.7
Provide a system capability that compares and synchronizes internal system clocks with an...
AU.L2-3.3.7 · 3 objectives
L2
3.3.8
Protect audit information and audit logging tools from unauthorized access, modification, and...
AU.L2-3.3.8 · 6 objectives
L2
3.3.9
Limit management of audit logging functionality to a subset of privileged users.
AU.L2-3.3.9 · 2 objectives
L2
Begin the conversation

Your contract eligibility is on a clock. Let’s get to work.

A 30-minute scoping call with a senior consultant. No pitch. We listen, scope honestly, and tell you what we’d do — including whether we are the right fit.

Request a scoping call →