Automated mechanisms exist to generate event logs for permissions changes to privileged accounts and/or groups.
Control Question
Assessment question for control validation
Does the organization use automated mechanisms to generate event logs for permissions changes to privileged accounts and/or groups?
Supply Chain Risk Management (SCRM) Tiers
Applicable SCRM tier levels for this control
Core Control Designations
Special designations and baseline inclusions
MAD: MON-16.4
ESP Level 1: MON-16.4
ESP Level 2: MON-16.4
ESP Level 3: MON-16.4