Question
Audit log and audit log correlation is a significant part of a network administrator and security officer's job. NIST has a document NIST SP 800-92
Audit log and audit log correlation is a significant part of a network administrator and security officer's job. NIST has a document NIST SP 800-92 "Guide to Computer Security Log Management" located at https://nvlpubs.nist.gov/nistpubs/Legacy/SP/nistspecialpublication800-92.pdf . Assume that your boss has come to you to ask you about managing audit logs.
Write a 1 - 2 page executive memo that addresses the following:
1. Discusses some of the challenges that log management faces.
2. Propose a "plan" for your network log management program to your boss. Who will review your logs? How often will they be reviewed? How will you protect your log files? What recommendations will you make for log aggregation and correlation? How can a tool such as Splunk assist with this?
Note: 12pt font, Times New Roman, Double Spaced
Step by Step Solution
There are 3 Steps involved in it
Step: 1
Get Instant Access with AI-Powered Solutions
See step-by-step solutions with expert insights and AI powered tools for academic success
Step: 2
Step: 3
Ace Your Homework with AI
Get the answers you need in no time with our AI-driven, step-by-step assistance
Get Started