Audits, Logs and Management Program


You are the CISO of a company and you need to create logging policies. Please review NIST SP800-92, specifically sections 4–3 through 4–7. Think about the various systems on a network and develop a logging policy based on the information in the aforementioned sections.

Create a 2-page Word document on your policy. Be sure to discuss device type, log generation, log transmission, log storage and disposal, and log analysis in your paper.