Mechanisms exist to restrict access to the management of event logs to privileged users with a specific business need.
Control Question
Assessment question for control validation
Does the organization restrict access to the management of event logs to privileged users with a specific business need?
Supply Chain Risk Management (SCRM) Tiers
Applicable SCRM tier levels for this control
Tier 2 - Operational
Tier 3 - Tactical
Core Control Designations
Special designations and baseline inclusions
MAD: MON-08.2
ESP Level 2: MON-08.2
ESP Level 3: MON-08.2