Security Log Management Sample Clauses

Security Log Management. 3.7.12.1 EPX Best Practices are applied. 3.7.12.2 Security logs will only be provided at the written request for the IT Contact or Director of the Customer.

Security Log Management. Configure log sources to capture and retain information without creating excessive logging. • Limit user access to log files. • Avoid logging sensitive or protected information. • Secure the processes that generate logs. • Identify and resolve logging errors. • Analyze log entries, prioritize entries, and respond to those requiring action. Security Incident Event Management (SIEM) Services supported by SOC. • Deployment of SIEM monitoring probes to monitor all critical network devices including; domain controller, firewalls, network switches, and routers. When meeting compliance requirements, deployment will include all Windows devices as well. • Reporting for compliance requirements - generate daily reports and threat analysis outlines for three regulatory standards: HIPAA, PCI and NIST-800. • SOC expertise and assistance. Provider will assist Client in the hours immediately following a data breach to identify the likely source of the breach and to begin formulating an appropriate response to the breach. However, any assistance with data breach-remediation efforts past the first twenty-four (24) hours following a breach – including but not limited to breach-notification planning, in-depth forensic examinations of the source of a breach, and significant, post-breach systems reconfiguration – are not within the scope of this Service Attachment. If Client requests Provider’s assistance with such activities, Provider will prepare a separate Service Attachment for Project Services that will specify what the charges will be for such assistance.