Essential Cybersecurity Controls (ECC – 2 : 2024) - Cybersecurity Event Logs And Monitoring Management; Documentation and Requirements - Lake Ridge

Compliance Solutions

NIST SP 800-171 & CMMC Compliance

Become compliant, provide compliance services, or verify partner compliance with NIST SP 800-171 and CMMC requirements.
Learn More

HIPAA Compliance

Become compliant, provide compliance services, or verify partner compliance with HIPAA security rule requirements.
Learn More

FAR 52.204-21 Compliance

Become compliant, provide compliance services, or verify partner compliance with FAR 52.204-21 Basic Safeguarding of Covered Contractor Information Systems requirements.
Learn More

ISO 27001 Compliance

Become compliant, provide compliance services, or verify partner compliance with ISO 27001 requirements.
Learn More
About
Contact

Login

Essential Cybersecurity Controls (ECC – 2 : 2024) - 2-12-1

Cybersecurity Requirements For Event Logs And Monitoring Management Must Be Defined, Documented And Approved.

View Requirement

Essential Cybersecurity Controls (ECC – 2 : 2024) - 2-12-2

The Cybersecurity Requirements For Event Logs And Monitoring Management Must Be Implemented.

View Requirement

Essential Cybersecurity Controls (ECC – 2 : 2024) - 2-12-3

The cybersecurity requirements for event logs and monitoring management must include at least the following:

Activation of cybersecurity event logs on critical information assets.
Activation of cybersecurity event logs on remote access and privileged user accounts.
Identification of required technologies (e.g., SIEM) for cybersecurity event logs collection.
Continuous monitoring of cybersecurity events
Retention period for cybersecurity event logs (must be 12 months minimum).

View Requirement

Essential Cybersecurity Controls (ECC – 2 : 2024) - 2-12-4

The Cybersecurity Requirements For Event Logs And Monitoring Management Must Be Reviewed Periodically.

View Requirement