Implement the following additional monitoring of privileged users: [Assignment: organization-defined additional monitoring].
|
|
| Control Identifier | SI-4(20) |
| Latest Sync Date | 19/12/24 09:18:14 |
| Discussion | Privileged users have access to more sensitive information, including security-related information, than the general user population. Access to such information means that privileged users can potentially do greater damage to systems and organizations than non-privileged users. Therefore, implementing additional monitoring on privileged users helps to ensure that organizations can identify malicious activity at the earliest possible time and take appropriate actions. |
| Related Controls | AC-18. |