ISO 27001 Annex : A.12.4 Logging and Monitoring
ISO 27001 Annex : A.12.4 Logging and Monitoring Its objective is recording events and generating evidence. A.12.4.1 Event Logging Control- Event logs should be produced, retained, and regularly reviewed to record user activities, exceptions, defects, and information security events. Implementation Guidance- Where applicable, event logs should include: IDs of User; Activities of the system; dates, times and key events details, such as log-on and log-off; System ID or location and device recognition where possible; records of the attempts to access the system successfully as well as rejected ones successful and unsuccessful data records and other attempts to access resources; system configuration alterations; utilization of privileges; the application and use of systems utilities; Accessed files and access kinds; network addresses and protocols; Entry management system warnings. Protective mechanisms such as anti-virus and...