Sign-in and Audit Logs
Introduction
By default 30 day rolling sign-in and audit logs are created in order to trouble shoot, provide evidence, improve the quality of myDRE.
Access to sign-in and audit logs
The
Access Control Policy (A.9.1.1) applies.
- Logs will not be shared with the Tenant
- On request by Tenant mandated people can view the logs
- In case of an incident, please contact anDREa by observing Incident Management Procedure (A.16.1.5)
See also:
Event logging - A.12.4.1
Examples
Sign-in logs
Audit logs
Related Articles
20240612 - External control audit management summary
20220713 Report Azure White Box Security Audit
Version: 2022-07-14 Introduction anDREa has a Pentest Program program as part of the commitment to protect the security of its business information. At least once a year we request an external party to do the pentest and a white box security audit. ...Foundation for Audit Recording
Introduction Providing demonstrable evidence is an important for an organization and its employees. This is required for instance for GDPR compliance and ISO 27001 certification. A key challenge is what needs to be recorded. While there are pointers ...20230503 - Internal audit management summary
Internal ISO 27001 audits are a crucial part of the Information Security Management System (ISMS) implementation process. These audits are conducted by an organization's own internal auditors or a team of trained individuals to assess the ...20230606 - External control audit management summary
anDREa B.V. is continuously evaluating and improving its Information Security Management System (ISMS). As such anDREa is ISO 27001:2017 certified as of September 1st 2022. Each year, an external control audit is conducted on selected topics, with ...