Question
3.3.1 Create and retain system audit logs and records to the extent needed to enable the monitoring, analysis, investigation, and reporting of unlawful or unauthorized
3.3.1 Create and retain system audit logs and records to the extent needed to enable the monitoring, analysis, investigation, and reporting of unlawful or unauthorized system activity.
Please answer as an IT staff for an equity firm:
Does the company create, protect, and retain information system audit records for between 30 days and 1 year (depending on data source and applicable regulations) to enable the monitoring, analysis, investigation, and reporting of unlawful, unauthorized, or inappropriate information system activity?
Are logs and log storage systems protected from unauthorized access and is access restricted to individuals with who need them for their job function?
Have requirements for content of audit records been defined and created?
Step by Step Solution
There are 3 Steps involved in it
Step: 1
Get Instant Access to Expert-Tailored Solutions
See step-by-step solutions with expert insights and AI powered tools for academic success
Step: 2
Step: 3
Ace Your Homework with AI
Get the answers you need in no time with our AI-driven, step-by-step assistance
Get Started
An Introduction To Project Management Predictive Agile And Hybrid Approaches
Authors: Kathy Schwalbe
7th Edition
8695713459, 979-8695713459
