Reviews and analyzes information system audit records
Assignment: organization-defined frequency for indications of Assignment: organization-defined inappropriate or unusual activity
AU-6a Parameter 1 Requirement: At least weekly AU-6a Parameter 2 Requirement: GSA S/SO or Contractor recommendation to be approved and accepted by the GSA AO.
Reports findings to Assignment: organization-defined personnel or roles
AU-6a Parameter 2 Requirement: ISSO, ISSM, Helpdesk, and the GSA Office of the Chief Information Security Officer following the Incident Reporting Procedures in GSA IT Security Procedural Guide 01-02, Incident Response
AWS Customer Responsibility Requirement:
Customers are responsible for:
* Reviewing and analyzing information system audit records at least weekly for indications of inappropriate or unusual activity, and report’s findings to designated organizational officials; and
* Adjusting the level of audit review, analysis, and reporting within the information system when there is a change in risk to organizational operations, organizational assets, individuals, other organizations, or the Nation based on law enforcement information, intelligence information, or other credible sources of information.