NISPOM
National Industrial Security Program (NISP) is the authority within the United States for access to classified data by government contractors. The Operating Manual (NISPOM) sets comprehensive standards to ensure continued availability and integrity of classified data, and prevent its unauthorized disclosure. NISPOM affects all government agencies and commercial contractors who have access to classified data.
Prism Microsystems comprehensive Security Information and Event Management (SIEM) solutions fulfill NISPOM Chapter 8 requirements.
Automated Audit Trail Creation
- Granular activity records
- Successful and unsuccessful logon and logoffs
- Successful and unsuccessful accesses to files and directories (including creation, open, close, modification and deletion)
Audit Trail Protection
- System activity log protection from unauthorized access, modification or deletion
Automated Audit Trail Analysis
- Scheduled analysis of activity logs using automated tools
- At least weekly review of audit log records
- Documentation and reporting of security relevant events
Audit Record Retention
- At least 1 year
- Compressed and encrypted