KSI-IAM-SUSImplementation guide coming soonResponding to Suspicious Activity
IAM — Identity and Access Management
NIST 800-53: ac-2, ac-2.1, ac-2.3, ac-2.13, ac-7, ps-4, ps-8
- Who this is for
- Cloud service providers
- Service class
- All service classes
- Implementation guidance
- Official source only
- Evidence automation
- Not published
Reviewed implementation guidance for KSI-IAM-SUS is not published yet. The official source below remains complete and authoritative.
Official FedRAMP source
Verbatim from FedRAMP/rules
Accounts with privileged access are disabled or otherwise secured in response to suspicious activity.
Content provenance
Official requirement text is sourced from FedRAMP/rules . Boundera implementation guidance has not been fully reviewed for this item.