In this course, you will learn how to mitigate the risks associated with insufficient logging and monitoring.
On successful completion of this course, learners should have the knowledge and skills to apply secure coding best practices to mitigate Insufficient Logging and Monitoring vulnerabilities, including:
- Ensuring all login or access control failures are logged and monitored
- Ensuring server-side input validation failures are logged and monitored
- Ensuring logs contain sufficient user context to identify suspicious or malicious accounts
- Ensuring logs are retained for sufficient time to allow delayed forensic analysis
If you would like to provide feedback for this course, please e-mail the NICCS SO at NICCS@hq.dhs.gov.