8.11: Conduct Audit Log Reviews
PF v1.0 References:
Previous Version:
- Critical Security Controls Version 7.1:
- 6.7: Regularly Review Logs
Control Statement
Conduct reviews of audit logs to detect anomalies or abnormal events that could indicate a potential threat. Conduct reviews on a weekly, or more frequent, basis.
[csf.tools Note: For more information on the Critical Security Controls, visit the Center for Internet Security.]