Navigate

SI-4 (2)

SI-4 (2): Automated Tools For Real-Time Analysis

The organization employs automated tools to support near real-time analysis of events.

Supplemental

Automated tools include, for example, host-based, network-based, transport-based, or storage-based event monitoring tools or Security Information and Event Management (SIEM) technologies that provide real time analysis of alerts and/or notifications generated by organizational information systems.

CIA Levels
Confidentiality	moderate
Integrity	moderate
Availability	moderate

Overlays
Int-A, Int-B, Int-C

Related Controls

The controls below (if any) were marked by NIST as being related to SI-4 (2).

Control	Description
No controls

Enhancements

The controls below (if any) add on to the requirements of SI-4 (2).

Control	Description
No controls

Related CCIs

The CCIs below are tied to SI-4 (2).

CCI	Definition
CCI-001260	The organization employs automated tools to support near real-time analysis of events.