MON-03.3: Privileged Functions Logging

MON-03.3 · Privileged Functions Logging

Control Description

Mechanisms exist to log and review the actions of users and/or services with elevated privileges.

Control Question

Assessment question for control validation

Does the organization log and review the actions of users and/or services with elevated privileges?

Control Weighting

Validation Cadence

Annual

NIST CSF Function

Detect

Supply Chain Risk Management (SCRM) Tiers

Applicable SCRM tier levels for this control

Tier 3 - Tactical

Core Control Designations

Special designations and baseline inclusions

MAD: MON-03.3

ESP Level 2: MON-03.3

ESP Level 3: MON-03.3