NIST 800-53 · AU — Audit and Accountability
AU-2 Event logging
Identify the event types the system is capable of logging and that are to be logged.
Mapped across 11 provisions
Equivalent and related requirements in other frameworks and regulations.
- HIPAAEquivalentOfficial mapping
Source: HIPAA Security Rule / NIST SP 800-53 Rev. 5
§164.312(b) Audit controlsLogging, monitoring & detection
- ISO 27001EquivalentOfficial mapping
Source: NIST SP 800-53 Rev. 5 / ISO/IEC 27001
A.8.15 LoggingLogging, monitoring & detection
- NIST CSF 2.0EquivalentOfficial mapping
Source: NIST CSF 2.0 / SP 800-53 Rev. 5
PR.PS-04 Log records generated for monitoringLogging, monitoring & detection
- CIS Controls v8EquivalentCurated8.1 Establish and maintain an audit log management process
Logging, monitoring & detection
- DORAPartialCuratedArt. 10 Detection
Logging, monitoring & detection
- GLBAEquivalentCurated§314.4(c)(8) Monitoring and logging of authorized user activity
Logging, monitoring & detection
- ISO 27001EquivalentCuratedA.8.16 Monitoring activities
Logging, monitoring & detection
- NIST 800-171EquivalentCurated3.3.1 Create and retain audit logs
Logging, monitoring & detection
- NIST CSF 2.0EquivalentCuratedDE.CM-01 Networks and services monitored
Logging, monitoring & detection
- PCI DSSEquivalentCuratedReq. 10 Log and monitor all access to system components and cardholder data
Logging, monitoring & detection
- SOC 2EquivalentCuratedCC7.2 Security event monitoring
Logging, monitoring & detection