The Mainframe Product must implement the capability to centrally review and analyze audit records from multiple components within the system.
Overview
| Finding ID | Version | Rule ID | IA Controls | Severity |
| V-263671 | SRG-APP-000745-MFP-000120 | SV-263671r982581_rule | CCI-003821 | medium |
| Description | ||||
| Automated mechanisms for centralized reviews and analyses include Security Information and Event Management products. | ||||
| STIG | Date | |||
| Mainframe Product Security Requirements Guide | 2024-12-05 | |||
Related Frameworks
2 paths across 2 frameworks
Related Frameworks
NIST 800-531 mapping
AU-6(4)
1.00
- DISA · 3 · disa_xccdf · related
- DISA · 2025-01-23 · disa_cci_list · equivalent
CCI1 mapping
CCI-003821
1.00
- DISA · 3 · disa_xccdf · related
Details
Check Text (C-263671r982581_chk)
Verify the Mainframe Product is configured to implement the capability to centrally review and analyze audit records from multiple components within the system.
If the Mainframe Product is not configured to implement the capability to centrally review and analyze audit records from multiple components within the system, this is a finding.
Fix Text (F-67492r982330_fix)
Configure the Mainframe Product to implement the capability to centrally review and analyze audit records from multiple components within the system.