Description

Automated alerts are generated to provide notification of an audit processing failure.

Applicability

  • This Control applies to all Texas A&M University information resources containing Critical, Confidential, or University-Internal data. The intended audience is information resource custodians who are responsible for the installation of new information resources, the operations of existing information resources, and individuals accountable for information resources security.

Implementation

  • 1

    The information resource custodian shall ensure that information resources are configured to:

    • 1.1

      Automate alerts in the event of an audit failure.

    • 1.2

      Automate alerts once the maximum storage capacity for audit logs is reached.

  • 2

    The information resource shall overwrite the oldest audit records or automatically shut down in an effort to eliminate the change of an incident in the absence of auditing and accountability.