Technical Data Gathering ◾ 255
© 2011 by Taylor & Francis Group, LLC
7.2.3.2 Verify Information Gathered
Information gathered regarding technical security controls should be conrmed
through the inspection process. Team members should use various methods to
conrm the existence of each of these security controls.
7.2.3.2.1 Audit Logs
e security risk assessment team should review a sample of available audit logs.
Specically, the team can ask to see the audit reports of specic events they suspect
or know have happened:
◾ Log les for security risk assessment team log-ins
◾ Log les associated with security risk assessment team testing
◾ Log les for last access to an excessive privileged application such as a pass-
word cracker
◾ Log les ...