SANS – Critical Log Review Checklist For Security Incidents 3.3 3.3.4 Audit and Accountability
SANS checklist for reviewing critical logs when responding to a security incident or for routine log review.
SEARCH RESULTS
SANS Whitepaper – Log Management Strategies 3.3 3.3.5 3.3.6 3.3.8 3.3.9 Audit and Accountability csc6
This SANS whitepaper offers common elements to success for log management, in order to prepare for regulatory compliance audits.
SolarWinds – Audit policies and best practices for SEM 3.3 3.3.4 Audit and Accountability
Best practices for Windows Auditing Log monitoring and different types of windows audit logs
TechTarget – Security Log Management and Logging Best Practices 3.3 3.3.5 3.3.6 3.3.8 3.3.9 Audit and Accountability csc6
Learn how to conduct security log management that provides visibility into IT infrastructure activities and traffic, improves troubleshooting and prevents service disruptions.
Texas A&M University – Electronic Protected Health Information Audit Log Requirements 3.3 3.3.3 Audit and Accountability
This policy provides an example of events surrounding confidential or restricted information that are typically logged. While this example is for health information, the log requirements would apply to other restricted information as well. The policy includes a description of log reviews.
University of California Berkley Information Security Office – Security Audit Logging Guideline 3.3 3.3.1 3.3.3 Audit and Accountability
This guideline describes the risk of inadequate logging, defines events to be logged and establishes a case for using an automated tool for log review.
US-CERT – CRR Supplemental Resource Guide, Volume 5: Incident Management 3.3 3.3.5 Audit and Accountability
US-CERT resource that provides information on how to create, test and improve an Incident Management plan.