CIS Controls v8 · Control 8: Audit Log Management
8.1 Establish and maintain an audit log management process
Establish and maintain a documented audit log management process defining the enterprise's logging requirements.
Mapped across 11 provisions
Equivalent and related requirements in other frameworks and regulations.
- ISO 27001EquivalentOfficial mapping
Source: CIS Controls v8 / ISO/IEC 27001
A.8.16 Monitoring activitiesJournalisation, surveillance et détection
- NIST CSF 2.0EquivalentOfficial mapping
Source: CIS Controls v8 / NIST CSF 2.0
DE.CM-01 Networks and services monitoredJournalisation, surveillance et détection
- DORAPartialCuratedArt. 10 Detection
Journalisation, surveillance et détection
- GLBAEquivalentCurated§314.4(c)(8) Monitoring and logging of authorized user activity
Journalisation, surveillance et détection
- HIPAAEquivalentCurated§164.312(b) Audit controls
Journalisation, surveillance et détection
- ISO 27001EquivalentCuratedA.8.15 Logging
Journalisation, surveillance et détection
- NIST 800-171EquivalentCurated3.3.1 Create and retain audit logs
Journalisation, surveillance et détection
- NIST 800-53EquivalentCuratedAU-2 Event logging
Journalisation, surveillance et détection
- NIST CSF 2.0EquivalentCuratedPR.PS-04 Log records generated for monitoring
Journalisation, surveillance et détection
- PCI DSSEquivalentCuratedReq. 10 Log and monitor all access to system components and cardholder data
Journalisation, surveillance et détection
- SOC 2EquivalentCuratedCC7.2 Security event monitoring
Journalisation, surveillance et détection