Meet PCI DSS log monitoring requirements with EventLog Analyzer
Meeting credit card industry security standards by attaining PCI DSS compliance is vital for the protection of cardholder data. In fact, there's a strong correlation between companies that experience a breach and noncompliance. The latest version of PCI DSS, 3.2, has 12 requirements, each with several measures that organizations must implement in order to pass the audit.
Download our PCI DSS SIEM guide to learn about the important SIEM (security information and events management) capabilities you need to pass your PCI DSS audit.
Log monitoring is a crucial aspect of PCI DSS compliance. The objective for organizations is to be in a position to identify security incidents immediately and respond before they result in a data breach. The technical measures that organizations must implement are elaborated in requirement 10, but they also appear in other requirements, such as 11.5.
Broadly speaking, organizations must ensure they have the capability to:
- Collect logs from the network and maintain the audit trail
- Store logs securely
- Implement change detection and file integrity monitoring
- Review security events at least every 24 hours
- Investigate and respond to security incidents promptly
Apart from providing these capabilities, the log monitoring solution itself should meet data integrity requirements. The following documents give details on how EventLog Analyzer securely handles log data, system defaults, and authentication mechanisms: