This publication seeks to assist organizations in understanding the need for sound computer security log management. It provides practical, real-world guidance on developing, implementing, and maintaining effective log management practices throughout an enterprise. The guidance in this document covers several topics, including establishing a centralized log management infrastructure, and developing and performing robust log management processes at both the organization level and the individual system level. The document presents logging technologies from a high-level viewpoint, and it is not a step-by-step guide to implementing or using logging technologies.
New publication by NIST. Download the full PDF.