Carahsoft, in conjunction with its vendor partners, sponsors hundreds of events each year, ranging from webcasts and tradeshows to executive roundtables and technology forums.
For privileged sessions, it is of course best practice to audit everything. With a documented record of all
actions performed, audit logs not only can be used in forensic analysis to find exactly the issue, but also
to attribute actions taken to a specific user. Because these sessions are so critical, it is also best practice
to keep a video recording of the session that can be reviewed or used as evidence for your most critical
assets, or in highly regulated industries. There are multiple regulations including PCI-DSS for payment card
data that specifically requires this level of auditing. If you have a security department, a good practice is to
integrate this audit data with your existing Security Information and Event Management (SIEM) system for
automated mining where risky activities can be identified and alerts raised.
Fill out the form below to view this Resource.