monitoring

monitoring Controls

13 controls across 5 frameworks.

CISA CPG

rr-4

Security logs are collected centrally and retained for investigation

Response and Recovery / Response and Recovery

high 4h

rr-5

Network and system anomalies are monitored and alerted on

Response and Recovery / Response and Recovery

high 4h

CMMC L1

cmmc-sc-1

Monitor, control, and protect communications at network boundaries

System & Comms Protection / Boundary Protection

critical 8h

HIPAA

hipaa-ts-2

Implement hardware, software, and procedural mechanisms that record and examine activity in systems containing ePHI

Technical Safeguards / Audit Controls

high 8h

NIST CSF

de-cm-1

Networks and network services are monitored to detect adverse events

Detect / Continuous Monitoring

high 6h

de-cm-7

Monitoring for unauthorized personnel, connections, devices, and software is performed

Detect / Continuous Monitoring

high 4h

de-cm-9

Computing hardware and software, runtime environments, and their data are monitored to find potentially adverse events

Detect / Continuous Monitoring

critical 10h

pr-ps-4

Log records are generated and made available for continuous monitoring

Protect / Platform Security

high 4h

SOC2

a1-1

Capacity is managed to ensure system availability

Availability / Availability

high 8h

cc2-1

Relevant security information is obtained and used

Security / Communication and Information

high 10h

cc4-1

Security controls are evaluated on an ongoing basis

Security / Monitoring Activities

high 12h

cc4-2

Control deficiencies are identified, evaluated, and communicated

Security / Monitoring Activities

high 6h

cc7-2

Anomalies and security events are detected and monitored

Security / System Operations

high 12h