Policy 7230A - Department of Administration
Policy 7230A - Department of Administration
Policy 7230A - Department of Administration
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
ecorded logs. In the event <strong>of</strong> other logging system failures the information system<br />
will be configured to immediately notify appropriate administrative personnel but<br />
take no other automated actions.<br />
All information systems, where the information system has the capability, shall be<br />
configured to notify appropriate administrative personnel in the event that<br />
inappropriate, unusual and/or suspicious activity is noted. In the event that<br />
automated notification fails, all system logs shall be manually reviewed according to a<br />
pre-defined period <strong>of</strong> time. Should inappropriate, unusual and/or suspicious activity<br />
be noted, it shall be fully investigated by appropriate administrative personnel and<br />
findings reported to appropriate security management personnel.<br />
These investigative functions will be supported by a reporting capability within the<br />
information system itself or within an accessory auditing system should one be used.<br />
This reporting function will have the ability to parse all collected information to<br />
produce custom reports. In all circumstances these reports will be automatically timestamped<br />
by the reporting system itself.<br />
System logs are considered confidential information. As such all access to system logs<br />
and other system audit information requires prior authorization and strict<br />
authentication whether the logs or other system audit information resides in the<br />
information system itself or in an accessory audit system. Further, any access to logs<br />
or other system audit information will be captured in those logs.<br />
On an annual basis the system audit policies and procedures will be reviewed and,<br />
where required, updated.<br />
25