When to use this
Use this map to prove which networks, systems, applications, cloud services, and security tools feed the monitoring process.
Related controls
- A.8.16 Monitoring Activities
- A.8.15 Logging
- Log Source and Retention Register
- Monitoring Detection Use Case Register
Coverage map
| Asset/service | Criticality | Monitoring source | Events collected | Detection use cases supported | Coverage status | Blind spot/gap | Compensating control | Owner | Review date |
|---|---|---|---|---|---|---|---|---|---|
| TBD | TBD | TBD | TBD | TBD | Covered / Partial / Missing | TBD | TBD | TBD | TBD |
Minimum checks
- Critical assets are listed.
- Monitoring source is identified for each asset.
- Missing or partial coverage is documented.
- Blind spots are risk-treated.
- Coverage is reviewed after system or architecture changes.
- Template
- Iso27001
- Technological controls
- Monitoring
- Evidence
Note Metadata
Aliases: Monitoring Source Map
Source: 90 Templates/Monitoring Coverage and Data Source Map.md
Related Notes
- A.8.16 Audit Evidence Pack
- ISO 27001 A.8.15 - Logging
- ISO 27001 A.8.16 - Monitoring Activities
- A.8 Technological Controls MOC
- A.8 Technological Controls Implementation Guide
- A.8 Technological Controls Audit Guide
- A.8 Technological Controls Implementation Audit Risk Mapping
- A.8.16 Audit Checklist
- Log Source and Retention Register
- Monitoring Detection Use Case Register
- Templates MOC