← Back to catalog
AC-6(9)

Log Use of Privileged Functions

Access Control (AC)
Baselines
Low · Not includedModerate · IncludedHigh · Included
Description

Log the execution of privileged functions.

Discussion

The misuse of privileged functions, either intentionally or unintentionally by authorized users or by unauthorized external entities that have compromised system accounts, is a serious and ongoing concern and can have significant adverse impacts on organizations. Logging and analyzing the use of privileged functions is one way to detect such misuse and, in doing so, help mitigate the risk from insider threats and the advanced persistent threat.

Implementation guidance

No content available.

CSF 2.0 crosswalk

No CSF mappings exist for this control.