3.3
Audit and Accountability
9 controls · 2 weighted 5 points · NIST SP 800-171 Rev 2
3.3.1Create and retain system audit logs for monitoring and investigation5 points
3.3.2Ensure actions can be traced to individual users for accountability3 points
3.3.3Review and update logged events1 point
3.3.4Alert on audit logging process failures1 point
3.3.5Correlate audit review, analysis, and reporting for investigation5 points
3.3.6Provide audit record reduction and report generation1 point
3.3.7Synchronize system clocks for audit records1 point
3.3.8Protect audit information and tools from unauthorized access1 point
3.3.9Limit management of audit logging to a privileged subset of users1 point
Estimate your SPRS score in 2 minutes
15 quick questions across the highest-impact controls — instant estimate, no signup.
Estimate my SPRS score →Source: NIST SP 800-171 Rev 2 (public domain) · SPRS weighting per the DoD Assessment Methodology