Navigate

CCI-001927

CCI-001927 Definition

Defines the organizations that will be provided cross-organizational audit information.

Status
Type	CheckType.policy

Master Assessment Datasheet

Implementation Guidance

Determine if cross-Organizational audit information is provided to [AU-16(02)_ODP[01]; organizations with which cross-Organizational audit information is to be shared are defined] based on [AU-16(02)_ODP[02]; cross-Organizational sharing agreements to be used when providing cross-Organizational audit information to organizations are defined].

Validation Procedures

Examine: [SELECT FROM: Audit and accountability policy; system security plan; privacy plan; procedures addressing cross-organizational sharing of audit information; information sharing agreements; other relevant documents or records]. Interview: [SELECT FROM: Organizational personnel with responsibilities for sharing cross-organizational audit information; organizational personnel with information security and privacy responsibilities].

Related Controls

The controls below (if any) were marked by NIST as being related to CCI-001927.

Control	Description
AU-16(2)	Provide cross-organizational audit information to [organizations with which cross-organizational audit information is to be shared are defined;] based on [cross-organizational sharing agreements to be used when providing cross-organizational audit information to organizations are defined;].