Irene,
IMO, the logs/reports should be kept at least as long as the records that were affected. This will aid in your ability establish record integrity.
Chris Flynn> Date: Tue, 19 Feb 2008 12:06:39 -0500> From: [log in to unmask]> Subject: Retention best practices for Security Breach/Incident reports/logs> To: [log in to unmask]> > Greetings:> > Does anyone have any best practices or guidelines they use within their IT > departments for the retention of IT security breach or attempt incident > reports/logs/responses, etc. The only thing I can find that might relate > is the Canadian and/or Ontario Statute of Limitations. > > Guidance and suggestions greatly appreciated,> > Irene Gelyk> Records Management> Research in Motion Limited> [log in to unmask]> > List archives at http://lists.ufl.edu/archives/recmgmt-l.html> Contact [log in to unmask] for assistance> To unsubscribe from this list, click the below link. If not already present, place UNSUBSCRIBE RECMGMT-L or UNSUB RECMGMT-L in the body of the message.> mailto:[log in to unmask]
_________________________________________________________________
Climb to the top of the charts! Play the word scramble challenge with star power.
http://club.live.com/star_shuffle.aspx?icid=starshuffle_wlmailtextlink_jan
List archives at http://lists.ufl.edu/archives/recmgmt-l.html
Contact [log in to unmask] for assistance
To unsubscribe from this list, click the below link. If not already present, place UNSUBSCRIBE RECMGMT-L or UNSUB RECMGMT-L in the body of the message.
mailto:[log in to unmask]