STIGViewer Trial workspace — loading your subscription…

NIST 800-53 Rev 5

424 controls available

AU-7(1)moderatehigh

Automatic Processing

Audit and Accountability

Control Statement

Provide and implement the capability to process, sort, and search audit records for events of interest based on the following content: {{ insert: param, au-07.01_odp }}.

Discussion

Events of interest can be identified by the content of audit records, including system resources involved, information objects accessed, identities of individuals, event types, event locations, event dates and times, Internet Protocol addresses involved, or event success or failure. Organizations may define event criteria to any degree of granularity required, such as locations selectable by a general networking location or by specific system component.

Framework
NIST SP 800-53 Rev 5
Family
Audit and Accountability
Baselines
moderate, high

Related Frameworks

3 paths across 1 framework
CCI3 mappings
CCI-000158
1.00
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-001883
1.00
  • DISA · 2025-01-23 · disa_cci_list · equivalent
CCI-003830
1.00
  • DISA · 2025-01-23 · disa_cci_list · equivalent

Related STIGs

15 STIGs reach this control through 23 CCIs. Expand a row to see the responsible NICE and O*NET roles.

Operating System — Server

5 STIGs

Operating System — Mainframe

3 STIGs
Mainframe Product Security Requirements Guide
V3R42025-09-109 of 194 findings match
IBM z/OS RACF Security Technical Implementation Guide
V9R82026-03-091 of 222 findings match

Web / Application Server

2 STIGs

Virtualization / Container

2 STIGs
Virtual Machine Manager Security Requirements Guide
V2R32025-09-109 of 198 findings match
Container Platform Security Requirements Guide
V2R42025-09-101 of 188 findings match

Endpoint Security Management

3 STIGs
Central Log Server Security Requirements Guide
V3R42026-02-1220 of 127 findings match
Tanium 7.x Security Technical Implementation Guide
V2R32025-05-141 of 98 findings match