CCI-001869
CCI-001869 Definition
The organization specifies the permitted actions for each information system process, role, and/or user associated with the reporting of audit information.
Status | |
Type | CheckType.policy |
Master Assessment Datasheet
Implementation Guidance
The organization being inspected/assessed specifies and documents the permitted actions for each information system process, role, and/or user associated with the reporting of audit information.
Validation Procedures
The organization conducting the inspection/assessment obtains and examines the documented permitted actions to ensure the organization being inspected/assessed specifies the permitted actions for each information system process, role, and/or user associated with the reporting of audit information.
Compelling Evidence
1.) Documentation that specifies the permitted actions for each information system process, role, and/or user associated with the reporting of audit information 2.) Signed and dated audit and accountability policy