Logwatch 3.3 3.3.5 3.3.6 Audit and Accountability csc6
This document from Ubuntu discusses Logwatch, a tool that will monitor your server's logs and email the administrator a digest on a daily basis.
SEARCH RESULTS
logz.io – What Is User Activity Monitoring? 3.3 3.3.2 Audit and Accountability
This article discusses how User Activity Monitoring (UAM) can be used to thwart insider threats. The article discusses legal and ethical aspects of user activity monitoring and best practices.
Microsoft – Manage Dataverse auditing 3.3 3.3.2 Audit and Accountability
The Dataverse auditing feature is designed to meet the external and internal auditing, compliance, security, and governance policies that are common to many enterprises. Dataverse auditing logs changes that are made to customer records in an environment with a Dataverse database. Dataverse auditing also logs user access through an app or through the SDK in an environment.
NIST Authenticated NTP Service 3.3 3.3.7 Audit and Accountability
This article speaks to NIST's NTP servers that support authentication.
NIST SP 800-53: IR–4(3) Incident Handling 3.3 3.3.5 Audit and Accountability
NIST resource that defines incident handling requirements from event to incident declaration.
NIST SP 800-92 Guide to Computer Security Log Management 3.10.4 3.3 3.3.1 3.3.5 3.3.6 3.3.8 3.3.9 Audit and Accountability csc6
This NIST Special Publication provides practical guidance on developing and maintaining effective log management practices.
Norfolk State University – Audit Review, Analysis, and Reporting Policy 3.3 3.3.5 3.3.6 3.3.8 3.3.9 Audit and Accountability csc6
This link from Norfolk State University serves as is an example of a log review, analysis, and reporting policy.
Open Web Application Security Project (OWASP) – Logging Cheat Sheet OWASP 3.3 3.3.1 Audit and Accountability
This cheat sheet covers all of the important aspects of logging such as what to include and how long to retain among others.
Proofpoint – The Importance of Enterprise Scale for User Activity Monitoring 3.3 3.3.2 Audit and Accountability
This blog discusses the biggest IT security threat facing companies today, their authorized users.
SANS – Information Logging Standard 3.3 3.3.5 3.3.6 3.3.8 3.3.9 Audit and Accountability csc6
This policy from SANS helps identify requirements that must be met by a system to generate logs.