Compliance Monitoring
Compliance monitoring ensures systems and applications remain compliant with various standards.
- occurs for 2 reasons:
- internal compliance
- ensure that systems and applications comply with internal security standards, baselines, and monitoring policies
- External compliance
- ensure that the organization is meeting legal and regulatory compliance obligations
- internal compliance
- approach to compliance varies according to the level of risk
- events of interest:
- anomalous activity
- errors and omissions
- policy failures and violations
- intrusions
- unauthorized changes to systems, data, or applications