NIST 800-171 · 3.3 Audit and Accountability
3.3.1 Create and retain audit logs
Create and retain system audit logs to enable monitoring, analysis, investigation and reporting.
Mapped across 11 provisions
Equivalent and related requirements in other frameworks and regulations.
- CIS Controls v8EquivalentCurated8.1 Establish and maintain an audit log management process
Journalisation, surveillance et détection
- DORAPartialCuratedArt. 10 Detection
Journalisation, surveillance et détection
- GLBAEquivalentCurated§314.4(c)(8) Monitoring and logging of authorized user activity
Journalisation, surveillance et détection
- HIPAAEquivalentCurated§164.312(b) Audit controls
Journalisation, surveillance et détection
- ISO 27001EquivalentCuratedA.8.16 Monitoring activities
Journalisation, surveillance et détection
- ISO 27001EquivalentCuratedA.8.15 Logging
Journalisation, surveillance et détection
- NIST 800-53EquivalentCuratedAU-2 Event logging
Journalisation, surveillance et détection
- NIST CSF 2.0EquivalentCuratedDE.CM-01 Networks and services monitored
Journalisation, surveillance et détection
- NIST CSF 2.0EquivalentCuratedPR.PS-04 Log records generated for monitoring
Journalisation, surveillance et détection
- PCI DSSEquivalentCuratedReq. 10 Log and monitor all access to system components and cardholder data
Journalisation, surveillance et détection
- SOC 2EquivalentCuratedCC7.2 Security event monitoring
Journalisation, surveillance et détection