Text of Recommendation | Centralize system privileged and non-privileged user access review, audit log activity monitoring, and management of Personal Identity Verification (PIV) or Identity Assurance Level (IAL) 3/Authenticator Assurance Level (AAL) 3 credential access to all the NRC systems (findings noted in bullets 1, 3, and 4 above) by continuing efforts to implement these capabilities using automated tools. |
---|---|
Recommendation Number | 4 |
Recommendation Status | Closed |
Significant Recommendation | Yes |
Submitting OIG | |
---|---|
Linked Report |