Expert Advice Community

Guest

Annex 12-4

  Quote
Guest
Guest user Created:   Jun 24, 2020 Last commented:   Jun 24, 2020

Annex 12-4

Please sir in the toolkit of ISO 27001 under the Annex 12-6 there is a table for the level of logging by device type. Please can you throw more light on this form me?

0 0

Assign topic to the user

Assign

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

ISO 27001 DOCUMENTATION TOOLKIT

Step-by-step implementation for smaller companies.

Expert
Rhand Leal Jun 24, 2020

If I understood you correctly, you want some sort of reference for the level of logging by device type (this would be related to Annex A.12.4 - Log and monitoring, not A.12.6 - Technical vulnerability management).

Considering that, there is no such template in the toolkit, since for each organization the level of logging, or which device type should be logged, may vary according to the organization's risk tolerance, results of risk assessment, and applicable legal requirements (e.g., laws, regulations, and contracts). Additionally, such documents may mislead organizations while implementing their own logging practices, because they may understand that these are the solution for their risk, without considering their own organizational context.

For example, for a firewall log, you can adopt source and destination IP, date, user, and for workstation log you can use IP, date, user, successful/failed login, etc.

This article will provide you a further explanation about logging:

Quote
0 0
Guest
isaac batun Jun 24, 2020

Great explaination. Thank you

Quote
0 0

Comment as guest or Sign in

HTML tags are not allowed

Jun 24, 2020

Jun 24, 2020

Suggested Topics

Guest user Created:   Jul 09, 2020 ISO 27001 & 22301
Replies: 1
0 0

ISO 27001 Maintenance Logs

Guest user Created:   Feb 13, 2020 ISO 27001 & 22301
Replies: 1
0 0

ISO 27001 and SIEM

Guest user Created:   May 01, 2018 ISO 27001 & 22301
Replies: 1
0 0

Log monitoring and review