What is CMMC 2.0 L2 AU.L2-3.3.1?

CMMC 2.0 L2 AU.L2-3.3.1 (System Auditing) requires: Create and retain system audit logs. This is a high-severity control.

How does EchelonGraph detect CMMC 2.0 L2 AU.L2-3.3.1 violations?

EchelonGraph maps CMMC 2.0 L2 AU.L2-3.3.1 requirements to automated cloud security scans. Compliance scoring reflects the status of this control across all connected cloud accounts.

🛡️CMMC 2.0 L2 AU.L2-3.3.1high

System Auditing

Description

Create and retain system audit logs.

⚠️ Risk Impact

Without logs, CUI-handling incidents cannot be assessed.

🔧 Remediation

Enable multi-region audit logging.

🔗 Cross-Framework References

NIST 800-171 3.3.1

Automate CMMC 2.0 L2 AU.L2-3.3.1 compliance

EchelonGraph continuously monitors this control across all your cloud accounts.

Start Free →