MON-10
Event Log Retention
Description
Mechanisms exist to retain event logs for a time period consistent with records retention requirements to provide support for after-the-fact investigations of security incidents and to meet statutory, regulatory and contractual retention requirements.
Control Question
Does the organization retain event logs for a time period consistent with records retention requirements to provide support for after-the-fact investigations of security incidents and to meet statutory, regulatory and contractual retention requirements?
Control Metadata
Domain:
Continuous Monitoring
Validation Cadence:
Semi-Annual
Evidence Request List:
E-AST-11