Description
The organization allocates sufficient audit record storage capacity and configures auditing to reduce the likelihood of such capacity being exceeded.\n
Supplemental Guidance
The organization provides sufficient audit storage capacity, taking into account the auditing to be performed and the online audit processing requirements. Related security controls: AU-2, AU-5, AU-6, AU-7, SI-4.\n
Changes from Rev 4
Adds ’Log’ to title Changes parameter text from ‘record storage’ to ‘log retention’
Enhancements
(0) None.\n
Compliance Mappings
CIS Controls v8
8.108.3
ISO 17799 (legacy)
10.10.3
COBIT 4.1 (legacy)
None.