Which SP 800 document is the Guide to Computer Security log Management?

Enhance your preparation for the Federal IT Security Professional Test. Use quizzes, flashcards, and detailed explanations to ensure success. Stay ahead in the field of IT Security!

Multiple Choice

Which SP 800 document is the Guide to Computer Security log Management?

Explanation:
Logs are the heartbeat of security oversight, providing the data needed for monitoring, incident response, and forensics. The document titled Guide to Computer Security Log Management is the one that directly covers how to collect, centralize, analyze, store, and protect log data across systems, outlining what to log, how long to keep it, how to protect its integrity, and how to use it in practice. This makes it the exact reference for log management within the NIST SP 800 series. The other documents focus on different topics: sanitizing media to prevent data remnants, guidance on intrusion detection and prevention systems, and continuous monitoring of federal information systems and organizations. So the Guide to Computer Security Log Management is the correct match.

Logs are the heartbeat of security oversight, providing the data needed for monitoring, incident response, and forensics. The document titled Guide to Computer Security Log Management is the one that directly covers how to collect, centralize, analyze, store, and protect log data across systems, outlining what to log, how long to keep it, how to protect its integrity, and how to use it in practice. This makes it the exact reference for log management within the NIST SP 800 series. The other documents focus on different topics: sanitizing media to prevent data remnants, guidance on intrusion detection and prevention systems, and continuous monitoring of federal information systems and organizations. So the Guide to Computer Security Log Management is the correct match.

More Multiple Choice Questions
Subscribe

Get the latest from Passetra

You can unsubscribe at any time. Read our privacy policy