Requirement 10.7 deals with what aspect of logs?

Requirement 10.7 focuses on log retention and availability for analysis. This means that organizations must ensure that logs are retained for a specific period and are accessible for review and analysis as needed. Proper log retention is crucial for incident response, forensic investigations, and compliance with various regulatory requirements.

Maintaining logs allows organizations to track security events and analyze patterns that may indicate malicious activity. The retention period typically aligns with the organization's security policies and any legal or regulatory mandates, ensuring that logs are neither kept too long, which could risk exposing sensitive data, nor discarded too quickly, which could hinder investigations.

This requirement helps organizations establish a balance between securing their data and complying with applicable laws while ensuring that they have the necessary information to respond effectively to security issues.