Audit and Accountability

The goal of the Audit and Accountability (AU) objective is to ensure there are sufficient controls in place to provide auditable evidence for system transactions and that key records are available for a sufficient amount of time. This way if the system crashes, hacked, or someone fat fingers an entry, there are ways to recover data, and traceback and rollback changes.

  • Audit and Accountability Policy and Procedures
  • Auditable Events
  • Content of Audit Records
  • Audit Storage Capacity
  • Response to Audit Processing Failures
  • Audit Review, Analysis, and Reporting
  • Audit Reduction and Report Generation
  • Time Stamps
  • Protection of Audit Information
  • Non-Repudiation
  • Audit Record Retention
  • Audit Generation

Please log in to rate this.
0 people found this helpful.


Category: Control Objectives

← FedRAMP FAQ
Signup for the Security Audit Mailing List: