>myctrl.tools
Preferences
Under active development Content is continuously updated and improved · Last updated Feb 18, 2026, 2:55 AM UTC
Compare

AU.L2-3.3.6Reduction & Reporting

Level 2
800-171: 3.3.6

>Control Description

Provide audit record reduction and report generation to support on-demand analysis and reporting.

>Cross-Framework Mappings

NIST SP 800-171

3.3.6
Compare

SCF

MON-02
Compare
MON-06
Compare

>Assessment Interview Topics

Questions assessors commonly ask

Process & Governance:

  • What is your process for generating and reviewing audit reports?
  • Who receives audit analysis reports and how often?
  • How do you determine what audit data should be included in reports?
  • What governance ensures audit reports are acted upon appropriately?

Technical Implementation:

  • What tools provide audit log reduction and filtering capabilities?
  • How do you generate audit reports on-demand?
  • What technologies enable searching and analyzing large volumes of audit data?
  • What reporting tools produce audit summaries?
  • How do you query audit data for specific events or users?

Evidence & Documentation:

  • What audit logging configuration documentation can you provide?
  • What sample audit logs demonstrate required events are logged?
  • What audit log review documentation shows periodic review?
  • What SIEM screenshots show audit log aggregation and analysis?
  • What audit retention documentation shows logs are retained per policy?
  • What evidence shows audit logs are protected from modification?

Ask AI

Configure your API key to use AI features.