Read your logs! Read Windows, Linux & Cloud Log - NIST 800-92, SIEM & GRC Essentials

Опубликовано: 01 Май 2025
на канале: Study GRC

Server logs are often the first—and sometimes the only—evidence of an attack. Windows Event Viewer entries, Linux /var/log files, and cloud telemetry (AWS CloudWatch, GuardDuty, Sentinel) for actionable intelligence.

Checkout NIST SP 800-92 for a great reference and guidance.

https://www.crowdstrike.com/en-us/cyb...
https://www.cybrary.it/course/identif...
https://httpd.apache.org/docs/current...
https://nvlpubs.nist.gov/nistpubs/Leg...

Chapters

00:00 Introduction to GRC Mafia and Community Engagement
05:16 The Importance of Logs in Cybersecurity
11:39 Understanding Log Management and Analysis
22:01 Leveraging AI in Log Analysis
27:30 NIST Guidelines and Their Relevance Today
30:25 Exploring Logging and Monitoring Tools
32:55 Understanding Key Performance Indicators (KPIs) in Logging
34:19 The Importance of Data Retention and Backup
37:49 The Role of Configuration Files in Logging
40:13 The Evolution of Open Source in Enterprise
42:09 Integrating Risk Management in Organizations
46:18 The Future of Governance, Risk, and Compliance (GRC)

-
💬 Leave a comment with your thoughts, requests, and questions!

✅ Is this your vibe? Consider liking and subscribing to see more of it!

🚀 Join the Study GRC community:
Website: https://studygrc.org
Discord: https://discord.studygrc.org