Audit and Accountability (AU)

a. Monitor [Assignment: organization-defined open-source information and/or information sites] [Assignment: organization-defined frequency] for evidence of unauthorized disclosure of organizational information; and b. If an information disclosure is discovered: 1. Notify [Assignment: organization-defined personnel or roles]; and 2. Take the following additional actions: [Assignment: organization-defined additional actions].

Login

Audit and Accountability (AU)

Monitor open-source information and information sites using [Assignment: organization-defined automated mechanisms].

Login

Audit and Accountability (AU)

Review the list of open-source information sites being monitored [Assignment: organization-defined frequency].

Login

Audit and Accountability (AU)

Employ discovery techniques, processes, and tools to determine if external entities are replicating organizational information in an unauthorized manner.

Login

Audit and Accountability (AU)

Level N/A

a. Provide and implement the capability for [Assignment: organization-defined users or roles] to [Selection (one or more): record; view; hear; log] the content of a user session under [Assignment: organization-defined circumstances]; and b. Develop, integrate, and use session auditing activities in consultation with legal counsel and in accordance with applicable laws, executive orders, directives, regulations, policies, standards, and guidelines.

Login

Audit and Accountability (AU)

Initiate session audits automatically at system start-up.

Login

Audit and Accountability (AU)

[Withdrawn: Moved to SC-45(1).]

Login

Audit and Accountability (AU)

Provide and implement the capability for authorized users to remotely view and hear content related to an established user session in real time.

Login

Audit and Accountability (AU)

[Withdrawn: Moved to SC-45(2).]

Login

Audit and Accountability (AU)

Employ [Assignment: organization-defined methods] for coordinating [Assignment: organization-defined audit information] among external organizations when audit information is transmitted across organizational boundaries.

Login