NIST 800-171 v2
110 security requirements available
3.3.3Derived Requirement
Audit and Accountability
Security Requirement
Review and update logged events.
Discussion
The intent of this requirement is to periodically re-evaluate which logged events will continue to be included in the list of events to be logged. The event types that are logged by organizations may change over time. Reviewing and updating the set of logged event types periodically is necessary to ensure that the current set remains necessary and sufficient.
- Framework
- NIST SP 800-171 Rev 2
- Family
- Audit and Accountability
- Requirement Type
- derived
Related Frameworks
4 paths across 2 frameworks
Related Frameworks
NIST 800-531 mapping
AU-2(3)
1.00
- NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
CCI3 mappings
CCI-000127
1.00
- NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
- DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-001486
1.00
- NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
- DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-001843
1.00
- NIST · Rev 2 (Feb 2020, errata Jan 2021) · nist_800_171_app_d · equivalent
- DISA · 2025-01-23 · disa_cci_list · equivalent
Related STIGs
2 STIGs reach this control through 12 CCIs via 800-53 control AU-2. Expand a row to see the responsible NICE and O*NET roles.
Operating System — Server
1 STIG
Operating System — Server
1 STIGOracle Linux 7 Security Technical Implementation Guide
32025-05-081 of 243 findings match
M1
Operating System — Mainframe
1 STIG
Operating System — Mainframe
1 STIGIBM zVM Using CA VM:Secure Security Technical Implementation Guide
V2R22022-08-311 of 77 findings match
M1