An organization wants to enable the correlation and analysis of security-related events and other recorded data and to support investigations into information security incidents. Which control should it implement?
An organization wants to enable the correlation and analysis of security-related events and other recorded data and to support investigations into information security incidents. Which control should it implement?
The answer here is B B. Clock synchronization See clause 8.17 Clock Synchronization Detective control Control The clocks of information processing systems used by the organization should be synchronized to approved time sources. Purpose To enable the correlation and analysis of security-related events and other recorded data, and to support investigations into information security incidents.