SI-04(12) Automated Organization-generated Alerts

Alert si-04.12_odp.01 using si-04.12_odp.02 when the following indications of inappropriate or unusual activities with security or privacy implications occur: si-04.12_odp.03.

Parameter ID Definition
si-04.12_odp.01 personnel or roles
si-04.12_odp.02 automated mechanisms
si-04.12_odp.03 activities that trigger alerts

Baselines

Guidance

Organizational personnel on the system alert notification list include system administrators, mission or business owners, system owners, senior agency information security officer, senior agency official for privacy, system security officers, or privacy officers. Automated organization-generated alerts are the security alerts generated by organizations and transmitted using automated means. The sources for organization-generated alerts are focused on other entities such as suspicious activity reports and reports on potential insider threats. In contrast to alerts generated by the organization, alerts generated by the system in SI-4(5) focus on information sources that are internal to the systems, such as audit records.