The existing control relating to the centralised storage of privileged access event logs was merged into the existing control relating to collecting privileged access event logs. [ISM-1509, ISM-1651]
Dec 2022
Privileged access events are logged.
Existing controls relating to event logging were amended to increase clarity of intent and to reduce duplication of content. As a result, common guidance was consolidated into the event logging and monitoring section of the Guidelines for System Monitoring.
Nov 2018
The use of privileged accounts, and any activities undertaken with them, are monitored and audited.
Added to address a gap in guidance on privileged access to systems and resources.