Skip to content

Commit

Permalink
Remove RDMS.C04 as it is covered by common controls
Browse files Browse the repository at this point in the history
  • Loading branch information
@dogle-scottlogic
dogle-scottlogic committed Nov 18, 2024
1 parent dd5aa00 commit da00cdc
Showing 1 changed file with 0 additions and 24 deletions.
24 changes: 0 additions & 24 deletions services/database/relational/controls.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -77,27 +77,3 @@ controls:
text: Restriction of snapshot collection capabilities
- id: CCC.RDMS.C3.TR03

Check failure on line 78 in services/database/relational/controls.yaml

View workflow job for this annotation

GitHub Actions / yaml-checker / yaml-check

Missing property "tlp_levels". yaml-schema: file:///schemas/controls-schema.json. 

Missing property "tlp_levels".

Test requirement ID in the format CCC.<Service Category Abbreviation>.<Control ID>.TR##

Source: controls-schema.json (schemas/controls-schema.json)
text: Prevent unauthorized snapshot collection

- id: CCC.RDMS.C04
title: Enforce Logging & Monitoring
objective: Ensure logging and monitoring cannot be disabled by users.
control_family: Data
nist_csf: PR.PT-1
threats:
- M1030 # Network Intrusion Detection
control_mappings:
CCM:
- STA-04
- STA-05
ISO_27001:
- 2013 A.12.4.1
NIST_800_53:
- AU-2
- AU-3
test_requirements:
- id: CCC.RDMS.C4.TR01
text: Enable logging for database activities
- id: CCC.RDMS.C4.TR02
text: Active monitoring of database resources
- id: CCC.RDMS.C4.TR03
text: Restrict users from disabling logging and monitoring

0 comments on commit da00cdc

Please sign in to comment.