zydronium/manage.get.gov
1
0
Fork 0
mirror of https://github.com/cisagov/manage.get.gov.git synced 2025-08-05 17:28:31 +02:00
Code Issues Projects Releases Packages Wiki Activity
manage.get.gov/docs/compliance/dist/system-security-plans/ato/ac-6.9.md
Logan McDonald 8d493d2e44
Document things cloud.gov CRM fully supports (#122) 
* document things cloud.gov crm fully supports

* run make assemble
2022-10-13 10:36:44 -04:00

1 KiB
Raw Blame History

implementation-status control-origination
c-implemented
c-inherited-cloud-gov

ac-6.9 - [catalog] Log Use of Privileged Functions

Control Statement

Log the execution of privileged functions.

Control guidance

The misuse of privileged functions, either intentionally or unintentionally by authorized users or by unauthorized external entities that have compromised system accounts, is a serious and ongoing concern and can have significant adverse impacts on organizations. Logging and analyzing the use of privileged functions is one way to detect such misuse and, in doing so, help mitigate the risk from insider threats and the advanced persistent threat.

Control assessment-objective

the execution of privileged functions is logged.

What is the solution and how is it implemented?

cloud.gov automatically logs privileged actions taken within cloud.gov.