PCI DSS provides some specific requirements for how logs should be collected, reviewed and retained to maintain compliance. In Rapid7’s latest “Whiteboard Wednesday” video, I review three areas of PCI requirements for log management, including:
- Why logs need to be stored in a secure location
- The importance of regular investigation of known events
- The necessity of audit trails provided by your log management tool
To watch the full video on using logs to achieve PCI compliance, click here. To try it for yourself, create a free Logentries account in less than 60 seconds.