Less is always better for legal reasons. Having said that... Your best place to get any pertinent information will be dependent on the vertical that the business is in. I recommend to review all the regulatory requirements that you have to consider before you look at general best practice that may recommended by various vendors, ISO COBIT, COSO etc. HTH
Regards, Gary Everekyan CISSP, CISM, CHS-III, ISSAP,ISSPCS, ITILp, MCSE, MCT Information Security and Audit "High achievement always takes place in the framework of high expectation" - Jack Kinder -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of [EMAIL PROTECTED] Sent: Wednesday, November 08, 2006 11:31 AM To: [email protected] Subject: Industries Best practices My question today is Is there an industry standard for retention of IDS logs? What is considered best practices for reviewing firewall logs. Daily, weekly, quarterly, etc. Thanks for your assistance ------------------------------------------------------------------------ Test Your IDS Is your IDS deployed correctly? Find out quickly and easily by testing it with real-world attacks from CORE IMPACT. Go to http://www.coresecurity.com/index.php5?module=Form&action=impact&campaign=in tro_sfw to learn more. ------------------------------------------------------------------------ ------------------------------------------------------------------------ Test Your IDS Is your IDS deployed correctly? Find out quickly and easily by testing it with real-world attacks from CORE IMPACT. Go to http://www.coresecurity.com/index.php5?module=Form&action=impact&campaign=intro_sfw to learn more. ------------------------------------------------------------------------
