Open Web Application Security Project (OWASP) – Logging Cheat Sheet OWASP 3.3 3.3.1 Audit and Accountability
This cheat sheet covers all of the important aspects of logging such as what to include and how long to retain among others.
SEARCH RESULTS
Proofpoint – The Importance of Enterprise Scale for User Activity Monitoring 3.3 3.3.2 Audit and Accountability
This blog discusses the biggest IT security threat facing companies today, their authorized users.
SANS – Information Logging Standard 3.3 3.3.5 3.3.6 3.3.8 3.3.9 Audit and Accountability csc6
This policy from SANS helps identify requirements that must be met by a system to generate logs.
SANS – Critical Log Review Checklist For Security Incidents 3.3 3.3.4 Audit and Accountability
SANS checklist for reviewing critical logs when responding to a security incident or for routine log review.
SANS Whitepaper – Log Management Strategies 3.3 3.3.5 3.3.6 3.3.8 3.3.9 Audit and Accountability csc6
This SANS whitepaper offers common elements to success for log management, in order to prepare for regulatory compliance audits.
SolarWinds – Audit policies and best practices for SEM 3.3 3.3.4 Audit and Accountability
Best practices for Windows Auditing Log monitoring and different types of windows audit logs
TechTarget – Security Log Management and Logging Best Practices 3.3 3.3.5 3.3.6 3.3.8 3.3.9 Audit and Accountability csc6
Learn how to conduct security log management that provides visibility into IT infrastructure activities and traffic, improves troubleshooting and prevents service disruptions.
Texas A&M University – Electronic Protected Health Information Audit Log Requirements 3.3 3.3.3 Audit and Accountability
This policy provides an example of events surrounding confidential or restricted information that are typically logged. While this example is for health information, the log requirements would apply to other restricted information as well. The policy includes a description of log reviews.
University of California Berkley Information Security Office – Security Audit Logging Guideline 3.3 3.3.1 3.3.3 Audit and Accountability
This guideline describes the risk of inadequate logging, defines events to be logged and establishes a case for using an automated tool for log review.
US-CERT – CRR Supplemental Resource Guide, Volume 5: Incident Management 3.3 3.3.5 Audit and Accountability
US-CERT resource that provides information on how to create, test and improve an Incident Management plan.