Mechanisms exist to ensure databases produce audit records that contain sufficient information to monitor database activities.
Mechanisms exist to allocate and proactively manage sufficient event log storage capacity to reduce the likelihood of such capacity being exceeded.
Mechanisms exist to alert appropriate personnel in the event of a log processing failure and take actions to remedy the disruption.
Mechanisms exist to provide 24x7x365 near real-time alerting capability when an event log processing failure occurs.
Automated mechanisms exist to alert appropriate personnel when the allocated volume reaches an organization-defined percentage of maximum event log storage capacity.
Mechanisms exist to provide an event log report generation capability to aid in detecting and assessing anomalous activities.
Mechanisms exist to provide and implement the capability for auditing the parameters of user query events for data sets containing Personal Data (PD).
Mechanisms exist to employ trend analyses to determine if security control implementations, the frequency of continuous monitoring activities, and/or the types of activities used in the continuous monitoring process need to be modified based on empirical data.
Mechanisms exist to configure systems to use an authoritative time source to generate time stamps for event logs.
Mechanisms exist to synchronize internal system clocks with an authoritative time source.
Passcode