SI-04 (12) Information System Monitoring - Automated Alerts

Introduction

This document describes how Private Mendix Platform fulfills the SI-04 (12) control.

Control

The organization employs automated mechanisms to alert security personnel of the following inappropriate or unusual activities with security implications (organization-defined activities that trigger alerts).

Supplemental Guidance

This control enhancement focuses on the security alerts generated by organizations and transmitted using automated means. The types of activities that may warrant security alerts include unauthorized remote connections, unauthorized wireless connections, unauthorized use of prohibited mobile functions, unusual or unauthorized activities on internal networks, unusual login attempts, and threats identified by other organizations and passed on through information sharing activities.

Responsibility

Customer Responsibility

This is not a Mendix responsibility.

Guidance

Customer Responsibility

The customer is responsible for defining activities with security implications that require alerting and for implementing automated alerting mechanisms, such as SIEM or monitoring platforms. This includes configuring alert thresholds, notification rules, and ensuring alerts are distributed to designated security personnel for timely review and response.

Infrastructure and Application Implementers

Infrastructure and Application Implementers implement alert triggers in accordance with customer‑defined requirements at the infrastructure and application layers, respectively.

Infrastructure and Application Operators

Infrastructure and Application Operators ensure that alerting mechanisms continue to function as expected and that security alerts generated by infrastructure components and Mendix applications are reliably delivered and actionable.