STIGhubSTIGhub
STIGsRMF ControlsCompare

STIGhub

A free tool to search and browse the entire DISA STIG library. Saves up to 75% in security compliance research time.

Navigation

  • Browse STIGs
  • Search
  • RMF Controls
  • Compare Versions

Resources

  • About
  • Release Notes
  • VPAT
  • DISA STIG Library
STIGs updated 5 hours ago
Powered by Pylon
© 2026 Beacon Cloud Solutions, Inc. All rights reserved.
← All Controls

AU-1

Audit and AccountabilityRev 5

Policy and Procedures

CCI Identifiers (33)

CCI-000117Develop and document an organization-level; mission/business process-level; and/or system-level audit and accountability policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance.CCI-000118The organization disseminates a formal, documented, audit and accountability policy to elements within the organization having associated audit and accountability roles and responsibilities.CCI-000119Review and update the current audit and accountability policy on an organization-defined frequency.CCI-000120Develop and document procedures to facilitate the implementation of the audit and accountability policy and associated audit and accountability controls.CCI-000121The organization disseminates formal, documented, procedures to elements within the organization having associated audit and accountability roles and responsibilities.CCI-000122Review and update the current audit and accountability procedures on an organization-defined frequency.CCI-001569Defines the frequency on which the current audit and accountability policy will be reviewed and updated.CCI-001570Defines the frequency on which the current audit and accountability procedures will be reviewed and updated.CCI-001831The organization documents an audit and accountability policy that addresses purpose, scope, roles, responsibilities, management commitment, coordination among organizational entities, and compliance.deprecatedCCI-001832Disseminate the organization-level; mission/business process-level; and/or system-level audit and accountability policy to organization-defined personnel or roles.CCI-001833The organization documents procedures to facilitate the implementation of the audit and accountability policy and associated audit and accountability controls.deprecatedCCI-001834Disseminate to organization-defined personnel or roles procedures to facilitate the implementation of the audit and accountability policy and associated audit and accountability controls.CCI-001835The organization defines the frequency on which it will review the audit and accountability policy.deprecatedCCI-001836The organization defines the frequency on which it will update the audit and accountability policy.deprecatedCCI-001837The organization reviews the audit and accountability policy on an organization-defined frequency.deprecatedCCI-001838The organization updates the audit and accountability policy on an organization-defined frequency.deprecatedCCI-001839The organization defines the frequency on which it will review the audit and accountability procedures.deprecatedCCI-001840The organization defines the frequency on which it will update the audit and accountability procedures.deprecatedCCI-001841The organization reviews the audit and accountability procedures on an organization-defined frequency.deprecatedCCI-001842The organization updates the audit and accountability procedures on an organization-defined frequency.deprecatedCCI-001930Defines the personnel or roles to whom the organization-level; mission/business process-level; and/or system-level audit and accountability policy is to be disseminated.CCI-001931Defines the personnel or roles to whom the audit and accountability procedures are to be disseminated.CCI-003799Develop and document an organization-level; mission/business process-level; and/or system-level audit and accountability policy that is consistent with applicable laws, Executive Orders, directives, regulations, policies, standards, and guidelines.CCI-003800Designate an organization-defined official to manage the development and documentation of the audit and accountability policy.CCI-003801Designate an organization-defined official to manage the dissemination of the audit and accountability policy.CCI-003802Designate an organization-defined official to manage the development and documentation of the audit and accountability procedures.CCI-003803Designate an organization-defined official to manage the dissemination of the audit and accountability procedures.CCI-003804Defines the official designated for managing the development, documentation, and dissemination of the audit and accountability policy.CCI-003805Defines the official designated for managing the development, documentation, and dissemination of the audit and accountability procedures.CCI-003806Review and update the current audit and accountability policy following organization-defined events.CCI-003807Defines the events following reviewing and updating the current audit and accountability policy.CCI-003808Review and update the current audit and accountability procedures following organization-defined events.CCI-003809Defines the events following reviewing and updating the current audit and accountability procedures.

Linked STIG Checks (1)

Across 1 STIGs. Click to expand.