IS YOUR ORGANIZATION READY FOR PCI DSS 3.2?
Unlike many other regulations and standards, PCI DSS explicitly requires organization to implement log management. Besides specific references, log management is part and parcel of the whole standard as most of the 12 requirements need to be met with security tools that require log data.
With PCI DSS 3.2 the standards council has reiterated that log management is a critical part of security best practices.
From this White Paper you can learn:
- What are the log management related requirements of PCI-DSS, including archiving and log retention.
- How to satisfy these requirements using the syslog-ng Store Box and syslog-ng Premium Edition.