add items to ensure compliance logging is configured if required
- Adds a section for
logging
andcompliance
to ensure the appropriate logging configuration is in place to met compliance obligations.
Currently most of our services require additional auditing to validate what compliance logging is in place.
This has led to a situation where we have multiple systems/services capturing the same log data and incurring a significant cost.
This would ensure all readiness reviews acknowledge that the appropriate compliance logging has been configured, and no assumption of a default "catch all" logging configuration is in place. As mentioned, currently this incurs a significant cost, and sets a much wider net than what is required for compliance.
Edited by Nick Duff