Originally published at: https://grcacademy.io/cmmc/controls/au-l2-3-3-1/
Create and retain system audit logs and records to the extent needed to enable the monitoring, analysis, investigation, and reporting of unlawful or unauthorized system activity.