DSS06.05 Ensure Traceability and Accountability for Information Events
Establish arrangements to identify and apply security requirements applicable to the receipt, processing, physical storage, and output of data and sensitive messages. This includes physical records, data transmissions, and any data stored off site.
Illustrative Controls and the TIBCO LogLogic Solution
Changes to data structures are authorized, made in accordance with design specifications and implemented in a timely manner.
To satisfy this control objective, verify that data structure changes adhere to the design specifications and that they are implemented in the time frame required. Administrators can review data structure changes data such as alerts and reports.
Monitor and review all changes to data structures such as data using alerts and reports.
Reports and Filter Bloks
Use the following link or reference to see the DSS06.05 control reports and filter bloks: TIBCO LogLogic Reports and Filter Bloks for Sarbanes-Oxley and COBIT 2019.