graphgrc

SCF - MON-01.7 - File Integrity Monitoring (FIM)

Mechanisms exist to utilize a File Integrity Monitor (FIM), or similar change-detection technology, on critical assets to generate alerts for unauthorized modifications.

Mapped framework controls

SOC 2

• CC6.8
• CC7.1

Control questions

Does the organization utilize a File Integrity Monitor (FIM), or similar change-detection technology, on critical assets to generate alerts for unauthorized modifications?

This site is open source. Improve this page.