AU-4 - Audit Log Storage Capacity

Control requirements

AU-4 - 0

Allocate audit log storage capacity to accommodate [Assignment: organization-defined audit log retention requirements].

Implementation guidance

See the resources that follow to learn more about how to implement this control.

Audit logging of IBM Cloud events
Audit logging of application provider events and SIEM
IBM Cloud account setup

NIST supplemental guidance

Organizations consider the types of audit logging to be performed and the audit log processing requirements when allocating audit log storage capacity. Allocating sufficient audit log storage capacity reduces the likelihood of such capacity being exceeded and resulting in the potential loss or reduction of audit logging capability.