CCI-001270

Implementation Guidance

The organization being inspected/assessed documents and implements a process to test intrusion monitoring tools every 30 days. The organization must maintain an audit trail of test results. DoD has defined the frequency as every 30 days.

Validation Procedures

The organization conducting the inspection/assessment obtains and examines the documented process as well as the audit trail of test results to ensure the organization being inspected/assessed tests intrusion monitoring tools every 30 days. DoD has defined the frequency as every 30 days.

Compelling Evidence

1.) Signed and dated system security plan reference to section pertaining to a test process requires that the intrusion monitoring tools are tested every 30 days. 3.) Audit trail of test results.