← Back to catalog
AU-13

Monitoring for Information Disclosure

Audit and Accountability (AU)
Baselines
Low · Not includedModerate · Not includedHigh · Not included
Description

Monitor [assignment] [assignment] for evidence of unauthorized disclosure of organizational information; and If an information disclosure is discovered: Notify [assignment] ; and Take the following additional actions: [assignment].

Discussion

Unauthorized disclosure of information is a form of data leakage. Open-source information includes social networking sites and code-sharing platforms and repositories. Examples of organizational information include personally identifiable information retained by the organization or proprietary information generated by the organization.

Implementation guidance

No content available.

CSF 2.0 crosswalk
DE.CM-03Personnel activity and technology usage are monitored to find potentially adverse eventsDetect
PR.DS-10Protect