IT Auditing and Logging Standard Policy
Subscriber Content
Audit and Log Your Company Systems for Security and Compliance
The purpose of this auditing and logging standard is to ensure that all company systems are auditable and that proper procedures are in place to identify and resolve all high-risk security, integrity and/or availability issues.
Sample procedures include logging all actions taken by any individual with root or administrative privileges; recording all access to log files or systems; reporting all valid or invalid logical access attempts; logging the creation and deletion of system-level objects; retaining audit logs in accordance with the data retention policy; identifying the user identification, type of event, date and time, and origination of events; and disabling or turning off log services.