Skip to main content
Policy Advisory

Policy Advisory  Logging and Event Monitoring Standard

Date: 01/01/2025
Organization: Cybersecurity and Enterprise Risk Management
Referenced Sources: MGL Chapter 7D, Section 2

The Logging and Event Monitoring Standard reinforces the Commonwealth’s commitment to a logging and event monitoring strategy and outlines the controls necessary to safeguard the Commonwealth’s information assets and reduce risks.

Contact

Cybersecurity and Enterprise Risk Management

Online

For cybersecurity or risk management questions: Email Cybersecurity and Enterprise Risk Management at ERM@mass.gov
Skip table of contents

Table of Contents

You skipped the table of contents section.

Purpose

The purpose of this standard is to establish the minimum requirements for security monitoring and event management, to detect unauthorized activities on Commonwealth information systems. This standard defines the following related controls and acceptable practices:

•Audit requirements for user activities, exceptions, and information security 
events

•Logging activities and actions required to resolve system fault errors

•Guidelines for the frequency of reviewing audit logs

•Protection of audit logs through technical controls such as file permissions

•Integration of suspicious audit events and investigation into incident
response processes

Downloads

Open PDF file, 170.76 KB,  IS.022 Logging and Event Monitoring Standard (English, PDF 170.76 KB)

Contact

Online

For cybersecurity or risk management questions: Email Cybersecurity and Enterprise Risk Management at ERM@mass.gov
Referenced Sources:
MGL Chapter 7D, Section 2

Help Us Improve Mass.gov  with your feedback

Please do not include personal or contact information.
Feedback