💼 10.4 Audit logs are reviewed to identify anomalies or suspicious activity.

• Contextual name: 💼 10.4 Audit logs are reviewed to identify anomalies or suspicious activity.

• ID: /frameworks/pci-dss-v4.0/10/04

• Located in: 💼 10 Log and Monitor All Access to System Components and Cardholder Data

Description

Empty...

Similar

Sub Sections

Section	Sub Sections	Internal Rules	Policies	Flags
💼 10.4.1 The audit logs are reviewed at least once daily.	1
💼 10.4.1.1 Automated mechanisms are used to perform audit log reviews.
💼 10.4.2 Logs of all other system components are reviewed periodically.	1		1
💼 10.4.2.1 The frequency of periodic log reviews for all other system components is defined in the entity's targeted risk analysis.
💼 10.4.3 Exceptions and anomalies identified during the review process are addressed.