Navigate

CCI-000167

CCI-000167 Definition

Retain audit records for an organization-defined time period to provide support for after-the-fact investigations of incidents and to meet regulatory and organizational information retention requirements.

Status
Type	CheckType.policy

Master Assessment Datasheet

Implementation Guidance

Validation Procedures

Related Controls

The controls below (if any) were marked by NIST as being related to CCI-000167.

Control	Description
AU-11	The organization retains audit records for [one of ] to provide support for after-the-fact investigations of security incidents and to meet regulatory and organizational information retention requirements.