| Source | Azure Portal | ||
| Display name | Microsoft Managed Control 1702 - Information System Monitoring | Indicators Of Compromise | ||
| Id | 4dfc0855-92c4-4641-b155-a55ddd962362 | ||
| Version | 1.0.0 Details on versioning |
||
| Versioning |
Versions supported for Versioning: 0 Built-in Versioning [Preview] |
||
| Category | Regulatory Compliance Microsoft Learn |
||
| Description | Microsoft implements this System and Information Integrity control | ||
| Additional metadata |
Name/Id: ACF1702 / Microsoft Managed Control 1702 Category: System and Information Integrity Title: Information System Monitoring | Indicators Of Compromise Ownership: Customer, Microsoft Description: The information system discovers, collects, distributes, and uses indicators of compromise. Requirements: The Microsoft Threat Intelligence Center (MSTIC) collects and uses indicators of compromise from US-CERT, industry partners, and other external sources. Indicators of compromise are also discovered from audit logs. These indicators of compromise are distributed to Azure Security personnel and are used to improve the Security Logging and Monitoring (SLAM) analysis process. |
||
| Mode | Indexed | ||
| Type | Static | ||
| Preview | False | ||
| Deprecated | False | ||
| Effect | Fixed audit |
||
| RBAC role(s) | none | ||
| Rule aliases | none | ||
| Rule resource types | IF (2) Microsoft.Resources/subscriptions Microsoft.Resources/subscriptions/resourceGroups |
||
| Compliance | Not a Compliance control | ||
| Initiatives usage | none | ||
| History | none | ||
| JSON compare | n/a | ||
| JSON |
|